[BlueOnyx:03356] Re: Gumblar
Jeff Folk
jefffolk at mac.com
Sat Jan 16 19:28:02 -05 2010
As I understand it... Infected users computers are mined for FTP
passwords, then the virus phones home with the info, then another
computer does the site hacking with the FTP credentials...
Jeff
On Jan 16, 2010, at 6:58 AM, Alan Kline wrote:
> So if I'm understanding that article, the sites are being infected via
> the administrator's computer, and not by a direct attack on the
> server?
>
> ak
>
> On 1/16/2010 5:37 AM, Colin Jack wrote:
>>
>> A quick heads up for those not aware of this. We have had a couple of
>> clients compromised.
>>
>> More info here:
>>
>> http://justcoded.com/article/gumblar-family-virus-removal-tool/
>>
>> Colin
> _______________________________________________
> Blueonyx mailing list
> Blueonyx at blueonyx.it
> http://www.blueonyx.it/mailman/listinfo/blueonyx
More information about the Blueonyx
mailing list