franko writes:Sometime during the early morning of Sunday 1 May 2005 (USA TIME) a massive attack against some 5000 php based sites across Texas and Californian servers occured. The source of this attack is believed to be from a group in Brazil using the domain www.outlawgroup.cjb.net
The attack as far as we are aware has affected at the least high bandwidth servers in Texas and California (Siteground being one we know of as we use them). Has anyone else been affected by this group ? The attack resulted in the index.php file and other files being replaced and other files deleted. In addition logs appear o have been flushed as well in an attempt to cloak their origins. Reports have gone to Cert regarding this attack which is believed to have affected over 5000 sites.
Frank & Mark in Australia (now u very very late restoring sites)
Related
Re: Massive Attack Against Php Based Sites In USA (Score: 1) |  | thats why i have banned that loveable country... |
Re: Massive Attack Against Php Based Sites In USA (Score: 1) | | In order to flush logs, someone would need to have permissions to the server level files which is beyond the pervue of any "nuke" related functions, or any other function that would be "hosted". That type of attack would be against the operating system or administration functions of the server itself (a level above what you would have access to as a patron using a shared host). Not having any functional information regarding the attacks, the CERT report numbers or what the attack consisted of makes it very difficult to identify who is getting hit by what (in terms of the type of attacks). Regardless, that type of attack would indicate that it doesn't matter what you are using for software (nuke, or frontpage for that matter) as if the server itself is being attacked at the root level, there's nothing you could do about it unless you were the guy that runs to box. |
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
