The June07 Mpack attack

Located in Russian underground forums and built as a commercial package, the MPack Exploit kit was the first documented type of its kind.

On 18th of June 2007, a large scale attack was uncovered at an Italian based Web Hosting company. First discovered by Panda Software in May 2007, reports are stating over 10'000 sites were compromised and used to serve malware to unsuspecting end users.

SANS Internet Storm Center had some good analysis of the Mpack exploit package that was used with a follow up story containing information from iDefense.

This attack is far from unique and makes an ideal first post for Hacker Target as it clearly highlights the need for Internet Security Awareness amongst web hosts and web site owners. Criminals use compromised internet servers to distribute Malware as it makes them hard to track and they are so readily available.

Related articles
- ArsTechnica Article
- The Register: MPack developer on automated infection kit
- PandaLabs Analysis of Mpack from December 2006