Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole
Jump to navigation
Jump to search
(Publication) Google search: [1]
| Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole | |
|---|---|
| Botnet | |
| Malware | Cdorked.A |
| Botnet/malware group | |
| Exploit kits | |
| Services | |
| Feature | |
| Distribution vector | |
| Target | |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2013 / 2013-04-26 |
| Editor/Conference | ESET |
| Link | http://www.welivesecurity.com/2013/04/26/linuxcdorked-new-apache-backdoor-in-the-wild-serves-blackhole/ (Archive copy) |
| Author | Pierre-Marc Bureau |
| Type | |
Abstract
“ Our analysis of this malware, dubbed Linux/Cdorked.A, reveals that it is a sophisticated and stealthy backdoor meant to drive traffic to malicious websites. We urge system administrators to check their servers and verify that they are not affected by this threat. Detailed instructions to perform this check are provided below. (You can find more about Blackhole here.)
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2013BFR1323,
editor = {ESET},
author = {Pierre-Marc Bureau},
title = {Linux/Cdorked.A: New Apache backdoor being used in the wild to serve Blackhole},
date = {26},
month = Apr,
year = {2013},
howpublished = {\url{http://www.welivesecurity.com/2013/04/26/linuxcdorked-new-apache-backdoor-in-the-wild-serves-blackhole/}},
}