Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Digiweb Servers hacked?

  • 22-02-2010 8:53pm
    #1
    jakedixon2004
    Registered Users, Registered Users 2 Posts: 495 ✭✭


    I received an email from a friend telling him that several websites hosted by Digiweb has been hacked via an exploit entitled "Martuz". I was wondering if anyone else has been alerted of this breach in security and possible ways to avoid this.
    Thanks


Comments

  • #2
    dlofnep
    Closed Accounts Posts: 20,759 ✭✭✭✭dlofnep


    It's gumblar in a nutshell. One of the biggest annoyances of 2009.


  • #3
    KoolKid
    Moderators, Home & Garden Moderators, Technology & Internet Moderators Posts: 24,789 Mod ✭✭✭✭KoolKid


    http://blog.unmaskparasites.com/2009/05/07/gumblar-cn-exploit-12-facts-about-this-injected-script/


  • #4
    {^Syntax^}
    Registered Users, Registered Users 2 Posts: 139 ✭✭{^Syntax^}


    Nothing new... web7.novara.ie (Digiweb) had thousands of infected sites last year. This was the culprit: adsttnmq1sdioyslkjs2 attack

    Digiweb denied it was a vulnerability in hSphere.


  • #5
    Sparky
    Registered Users, Registered Users 2 Posts: 22,231 ✭✭✭✭Sparky


    Its an FTP attack that is going around the internet at the moment and not specific to any hosting company. Hence why Hsphere logins are not affected. Its only FTP credentials that are stored in software like filezilla, cuteFTP dreamweaver etc. And yes apple computers are affected too, as its not an OS specific attack either.
    Digiweb/Novara has FTP accounts monitored for suspicious activity, hence why clients are getting this email and their passwords changed. Many other people on various hosting companies around the globe may not know yet that their FTP account was compromised again, only until their pages get changed by the attackers and then blocked by google.
    It may be an annoyance to have details changed, but this reduces the attack spreading again like it did last year.


Advertisement