Thousands of websites around the world may be unwittingly serving malware to visitors because they've been infected with a mysterious toolkit known as Darkleech. If your website is one of them, this could be very bad for your reputation. If visitors are getting their computers compromised when they visit your site, they won't be coming back in a hurry.
Ignorance of the problem is no excuse. It's the responsibility of every website owner to keep their servers safe from malware and if you're not paying attention to your own security, it could cost you hugely.
The Darkleech program has been brought to light by news and information service Ars Technica. An investigation by the publication estimates up to 20,000 websites have become infected with the code in the past few weeks alone.
And it's not just smaller sites that may have lax security that are being targeted. The site claimed compromised servers include those belonging to reputable companies such as the Los Angeles Times and storage equipment maker Seagate.
It was explained that once it takes hold, Darkleech injects invisible code into web pages, which in turn surreptitiously opens a connection that exposes visitors to malicious third-party websites.
The attack is significant as it appears to be deliberately targeting firms using Apache web server software. Over half the world's websites use this solution, so the potential for the problem to become even more widespread is clear.
It was observed the malware's strategy bears many resemblances to a 2008 attack that also infected tens of thousands of web servers to expose visitors' computers to malware sites. However, the true scale of the current problem is difficult to determine as the server malware is designed to hide itself, while it is also very tricky to get rid of.
Ars Technica said: "Disinfecting systems can prove challenging since backdoor and possibly even rootkit functionality may allow attackers to maintain control of servers even after the malicious modules are uninstalled."
GHOST, a critical Linux security is revealed
A critical vulnerability has been found ...
How Can I Deal With DDoS Without a Hardware Firewall?
A Distributed Denial of Service (DDoS) a...
Major Vulnerability discovered in Bash
As you may have already heard, Bash (the...
Fix network holes to keep your data center secure
One of the most important operations tha...
More websites under threat from DDoS attacks
Many websites may have to strengthen the...
World Hosting Days 2016
As you may know the World Hosting Days 2...
Scheduled network maintenance on February the 25th, 2016
Dear client, On February the 25th b...
New critical GLibc vulnerability discovered
Googles online security research team ha...
How to use our Auto renewal service in SnelPanel
Remembering when your server needs to be...
Scheduled network maintenance on February the 4th, 2016
Dear client, Our next step in final...
Other providers require extra money for bandwidth you may not even need. SnelServer.com differs from other providers by providing bandwidth pooling across all your servers at no extra cost. If your other servers have plenty of bandwidth left, we allow you to pool the bandwidth to another server that requires more. This enables you to save money and you can use your dedicated server more efficiently.
We offer additional flexibility by allowing you to upgrade your server at any time. You can upgrade your server without having to renumber your IP addresses or lose your data. All our dedicated servers come with hot swap drives, so the upgrades can often be done without any downtime.
SnelServer.com requires no contracts because we are confident that you will enjoy our flexible, fast and high performance servers which are completely dedicated to your needs. Hence, we have no obligations; you can cancel your dedicated server simply by not renewing it. This means your server will automatically expire on its expiry date. We only want you to stay because you are satisfied, not because a contract requires you to.
SnelServer.com provides a reliable and easy to implement Application Programming interface (API). Our API allows you to integrate our control panel seamlessly into your own systems. By integrating our control panel you can resell our dedicated servers under your own private brand at prices you want. We allow you to use our infrastructure and at the same time you will have a total control in providing support to your own customers. Get started on integrating our powerful API in to your business and earn money easily.