• Subscribe to the low volume list for updates.

The June07 Mpack attack

On 18th of June a large scale attack was uncovered at an Italian based Web Hosting company. Websense reported that over 10'000 sites were compromised and used to serve malware to unsuspecting end users.

SANS Internet Storm Center had some good analysis of the Mpack exploit package that was used with a follow up story containing information from iDefense.

This attack is far from unique and makes an ideal first post for hackertarget.com as it clearly highlights the need for Internet Security Awareness amongst web hosts and web site owners. Criminals use compromised internet servers to distribute Malware as it makes them hard to track and they are so readily available.

Other links of interest:
ArsTechnica Article
Symantec Analysis
PandaLabs Analysis of Mpack from December 2006