Thousands of websites around the world may be unwittingly serving malware to visitors because they've been infected with a mysterious toolkit known as Darkleech. If your website is one of them, this could be very bad for your reputation. If visitors are getting their computers compromised when they visit your site, they won't be coming back in a hurry.
Ignorance of the problem is no excuse. It's the responsibility of every website owner to keep their servers safe from malware and if you're not paying attention to your own security, it could cost you hugely.
The Darkleech program has been brought to light by news and information service Ars Technica. An investigation by the publication estimates up to 20,000 websites have become infected with the code in the past few weeks alone.
And it's not just smaller sites that may have lax security that are being targeted. The site claimed compromised servers include those belonging to reputable companies such as the Los Angeles Times and storage equipment maker Seagate.
It was explained that once it takes hold, Darkleech injects invisible code into web pages, which in turn surreptitiously opens a connection that exposes visitors to malicious third-party websites.
The attack is significant as it appears to be deliberately targeting firms using Apache web server software. Over half the world's websites use this solution, so the potential for the problem to become even more widespread is clear.
It was observed the malware's strategy bears many resemblances to a 2008 attack that also infected tens of thousands of web servers to expose visitors' computers to malware sites. However, the true scale of the current problem is difficult to determine as the server malware is designed to hide itself, while it is also very tricky to get rid of.
Ars Technica said: "Disinfecting systems can prove challenging since backdoor and possibly even rootkit functionality may allow attackers to maintain control of servers even after the malicious modules are uninstalled."
GHOST, a critical Linux security is revealed
A critical vulnerability has been found ...
How Can I Deal With DDoS Without a Hardware Firewall?
A Distributed Denial of Service (DDoS) a...
Major Vulnerability discovered in Bash
As you may have already heard, Bash (the...
Fix network holes to keep your data center secure
One of the most important operations tha...
More websites under threat from DDoS attacks
Many websites may have to strengthen the...
World Hosting Days 2016
As you may know the World Hosting Days 2...
Scheduled network maintenance on February the 25th, 2016
Dear client, On February the 25th b...
New critical GLibc vulnerability discovered
Googles online security research team ha...
How to use our Auto renewal service in SnelPanel
Remembering when your server needs to be...
Scheduled network maintenance on February the 4th, 2016
Dear client, Our next step in final...
Snelserver.com is one of the most affordable hosting providers while we are using the very latest and most powerful hardware, especially when you consider freebies like a dedicated KVM over IP. We offer the best hosting deals and enable you to use the best operating systems and dedicated servers such as dual core, quad core, dual quad core, hexa core and dual hexa core at very affordable prices.
SnelServer.com is a professional hosting provider with a no-nonsense mentality. We are one of the few hosting providers that actually offer affordable dedicated servers with instant setup. Therefore, there is no need to wait hours or even days to host your IT environment. Our dedicated servers enable you to create a fast and reliable hosting environment within a few minutes. Save time and money by getting our dedicated servers with instant setup and enjoy our servers with robust performance.
SnelServer.com requires no contracts because we are confident that you will enjoy our flexible, fast and high performance servers which are completely dedicated to your needs. Hence, we have no obligations; you can cancel your dedicated server simply by not renewing it. This means your server will automatically expire on its expiry date. We only want you to stay because you are satisfied, not because a contract requires you to.
Pay your invoices easily by adding SnelFunds to your SnelPanel account. You can add any amount higher than € 50 to your SnelFunds balance. Once you have transferred the amount to your SnelPanel account you can start paying your invoices without needing any of your cards. SnelFunds has lifetime validity and offers great bonuses.