Webhost hit by cPanel exploit
27-09-2006, 11:11
|
#1
|
Dr Pepper Addict
Cable Forum Team
Join Date: Oct 2003
Location: Nottingham
Age: 62
Services: Aquiss FTTP (900M), Sky Q TV, Sky Mobile, Flextel SIP
Posts: 29,680
|
Webhost hit by cPanel exploit
The popular linux [server] control software cPanel got hacked the other day ;
http://www.seopedia.org/internet-mar...-in-mass-hack/
__________________
Baby, I was born this way.
|
|
|
27-09-2006, 11:19
|
#2
|
Inactive
Join Date: Jun 2003
Age: 44
Posts: 14,750
|
Re: Webhost hit by cPanel exploit
Thanx for the heads up mate. Just wonder if I should warn my hosting co...
Shame about cPanel though, I really like it.
|
|
|
27-09-2006, 11:56
|
#3
|
Inactive
Join Date: Jun 2003
Location: On top of this heat sink
Age: 45
Services: Sky+ & 8mb ADSL + BT Together option 3
Posts: 2,345
|
Re: Webhost hit by cPanel exploit
Unfortunately this is alot worse than made out in Paul's post.
None of I-Webs servers were affected in this bug, we secured the servers as soon as the patch was released. Unfortunately a number of other hosts were victims even before the bug was widely known.
What did the bug do : Well it allowed someone to use the server as their own, allowing them to input code into other peoples files.
Then what? : If a user then visited your site, due to an exploit in IE too, a keylogger was installed into there system.
A key logger? : Yes, it basically logs every key you press and sends it to a remote server. This includes capturing login details for e-mail, online banking etc.
How do i know if i have been affected? : Apparently this site should crash if you are affected http://www.isotf.org/zert/testvml.htm
If that site crashes, then it is highly likely you are affected by this exploit, that was delivered using an exploit in cPanel.
Again, i would just like to clarify that none of the I-Web servers fell victim to this bug.
|
|
|
27-09-2006, 12:19
|
#4
|
Inactive
Join Date: Jun 2003
Location: Teesside
Posts: 8,315
|
Re: Webhost hit by cPanel exploit
Quote:
Originally Posted by KingPhoenix
How do i know if i have been affected? : Apparently this site should crash if you are affected http://www.isotf.org/zert/testvml.htm
If that site crashes, then it is highly likely you are affected by this exploit, that was delivered using an exploit in cPanel.
|
When I try and access that site my AV kicks in with this, does this mean I'm infected or what does it mean ??
|
|
|
27-09-2006, 12:24
|
#5
|
Inactive
Join Date: Jun 2003
Location: Essex innit
Age: 51
Services: Sky HD + 16Mb ADSL
BT Telephone
Posts: 15,735
|
Re: Webhost hit by cPanel exploit
|
|
|
27-09-2006, 12:36
|
#6
|
Inactive
Join Date: Jun 2003
Location: Teesside
Posts: 8,315
|
Re: Webhost hit by cPanel exploit
Quote:
Originally Posted by Paul
|
I can't find any trace of it..yet, still searching  of all the days to log onto my online banking
|
|
|
27-09-2006, 12:55
|
#7
|
cf.mega poster
Join Date: Mar 2006
Location: Oslo, Norway.
Age: 36
Services: Canal Digital: 50/10
Posts: 7,577
|
Re: Webhost hit by cPanel exploit
Not affected by it.
It's bad to see things such as cPanel, with big jobs to do getting compromised. But it's bound to happen at some point. Let's hope all damage done ca be reverted.
|
|
|
27-09-2006, 13:16
|
#8
|
Inactive
Join Date: Jun 2003
Location: Essex innit
Age: 51
Services: Sky HD + 16Mb ADSL
BT Telephone
Posts: 15,735
|
Re: Webhost hit by cPanel exploit
Possibly just a warning that it was detected as you logged into Cpanel Bop, might want to get your host to check the server just in case.
|
|
|
27-09-2006, 16:09
|
#9
|
Inactive
Join Date: Jun 2003
Location: Teesside
Posts: 8,315
|
Re: Webhost hit by cPanel exploit
|
|
|
27-09-2006, 16:18
|
#10
|
Inactive
Join Date: Mar 2005
Location: bolton
Age: 56
Services: non
wife took control
Posts: 5,425
|
Re: Webhost hit by cPanel exploit
Oh blummin great, you have just answered a lot of questions
|
|
|
27-09-2006, 16:18
|
#11
|
-
Join Date: Jul 2003
Location: Poole, Dorset
Age: 40
Services: FreeSat+
Tivo
V-Box
VM 60MBit
Posts: 13,365
|
Re: Webhost hit by cPanel exploit
Is there a fix for Cpanel then?
|
|
|
27-09-2006, 16:20
|
#12
|
Inactive
Join Date: Jun 2003
Location: Essex innit
Age: 51
Services: Sky HD + 16Mb ADSL
BT Telephone
Posts: 15,735
|
Re: Webhost hit by cPanel exploit
KP said in his post that I-web have patched their servers already so a patch must be out there for the problem.
|
|
|
27-09-2006, 16:23
|
#13
|
Inactive
Join Date: Jun 2003
Location: Teesside
Posts: 8,315
|
Re: Webhost hit by cPanel exploit
Quote:
Originally Posted by marky
Oh blummin great, you have just answered a lot of questions 
|
Who did ? me ? you fell for the same thing ???? I'm not alone in the world then
|
|
|
27-09-2006, 16:27
|
#14
|
Inactive
Join Date: Mar 2005
Location: bolton
Age: 56
Services: non
wife took control
Posts: 5,425
|
Re: Webhost hit by cPanel exploit
Quote:
Originally Posted by bopdude
Who did ? me ? you fell for the same thing ???? I'm not alone in the world then 
|
Our servers blocked several ip's at the time this happened, and the site posted here crashes
|
|
|
27-09-2006, 16:29
|
#15
|
Inactive
Join Date: Jun 2003
Location: Teesside
Posts: 8,315
|
Re: Webhost hit by cPanel exploit
Quote:
Originally Posted by marky
Our servers blocked several ip's at the time this happened, and the site posted here crashes 
|
I see
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT +1. The time now is 00:27.
|