[Full-disclosure] Georgia government sites hacked (and spreadingmalware)
Boris Trenn
bt at greatnet.de
Mon Feb 15 15:58:28 GMT 2010
Looks like the still work on it, meanwhile only the batik.php is avail.
Or something other deleted it with the phpshell inside :-)
-----Original Message-----
From: full-disclosure-bounces at lists.grok.org.uk
[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of
dd at sucuri.net
Sent: Montag, 15. Februar 2010 16:27
To: full-disclosure at lists.grok.org.uk
Subject: [Full-disclosure] Georgia government sites hacked (and
spreadingmalware)
A few sites from the Georgia .gov have been attacking our honeypots...
Some analysis:
http://blog.sucuri.net/2010/02/georgia-government-sites-hacked-and.html
Thanks,
--dd
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Full-Disclosure is hosted and sponsored by Secunia.