[ALUG] Compomised Apache servers

[Andreas Tauscher]

Within the last weeks hundreds of Apache webservers have been found
providing a backdoor and injecting html code into the deliverd pages.

How the servers have been infected is still unknown, but one is common
on all infected webservers: They all use cPannel for administration.

The blog at
http://www.welivesecurity.com/2013/04/26/linuxcdorked-new-apache-backdoor-in-the-wild-serves-blackhole/
describes how to verify if your apache binary is affected.

Andi