Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Georgia government sites hacked (and spreadingmalware)
From: "Boris Trenn" <bt () greatnet de>
Date: Mon, 15 Feb 2010 16:58:28 +0100

Looks like the still work on it, meanwhile only the batik.php is avail.
Or something other deleted it with the phpshell inside :-)

-----Original Message-----
From: full-disclosure-bounces () lists grok org uk
[mailto:full-disclosure-bounces () lists grok org uk] On Behalf Of
dd () sucuri net
Sent: Montag, 15. Februar 2010 16:27
To: full-disclosure () lists grok org uk
Subject: [Full-disclosure] Georgia government sites hacked (and
spreadingmalware)


A few sites from the Georgia .gov have been attacking our honeypots...

Some analysis:
http://blog.sucuri.net/2010/02/georgia-government-sites-hacked-and.html

Thanks,

--dd

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
  • Re: Georgia government sites hacked (and spreadingmalware) Boris Trenn (Feb 15)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]