• Home
  • Download Free eBook
  • OC Archives
  • Tools I Use
  • Webmaster Forum
  • Write For Us
Logo

  • Discounts
  • SEO Central
    • All other Search
    • Bing
    • Google Central
    • Yahoo
  • Social Networks
    • Digg
    • facebook
    • Squidoo
    • Technorati
    • Twitter
  • Web Design & Development
    • Ajax
    • Coding
    • Database
    • Graphic Design
    • Joomla
    • jQuery
    • OScommerce
    • Photoshop
  • Webmaster Central
    • Author's Corner
    • Case Studies
    • Content Writing
    • Featured Interviews
    • Guest Posts
    • Make Money Online
    • OC Promos
    • Premium Reviews
    • Video Tutorials
    • Web Hosting
    • Web News
    • Web Security
  • Wordpress

Update on the Gumblar Attack front

Posted by Joshu on Aug 16, 2009 in Webmaster Central | 1 comment

Linux Hosting environment being affected by Gumblar Attacks. Over the past few days, we have been investigating these attacks, and working on methods to mitigate the damage caused by them; our findings and recommendations are as follows:

  • Through our investigations, it was confirmed that the infection was not due to any server vulnerability. We enforce stringent security measures to safeguard your data.
  • The attack is perpetrated through stolen FTP login credentials. It transmits FTP information to an IP address from an infected machine.
  • This FTP information is then used to log on to the web server and infect the hosted website.
  • The attack is not limited to ResellerClub’s hosting services – so far, thousands of websites across a large number of hosting providers have been infected through this attack.

Given the nature and scope of this attack, it is important that proper security measures to be taken at all levels to prevent it. We would like to suggest a few steps that would reduce the vulnerability of your computer and remove existing threats.

Recommendations:

  • Install an antivirus program with the latest updates and ensure removal of any malware, trojans or key loggers on any machine that you use to manage your website’s content via FTP. Several free antivirus software like AVG, AntiVir, Malwarebytes are available for this purpose. Regular virus scans will minimize such threats to a great extent.
  • Once you are confident of a clean machine, you should change all FTP passwords.
  • Avoid storing the new FTP passwords directly on the FTP clients. Variants of this virus have the potential to grab stored passwords from there.

What you need to do at your end to stay in tandem with the steps that we’ve taken:

  • All websites that were determined to be infected have now been cleared. If you find any discrepancy with the content of your website, please inform our support team immediately.
    • You need to login to your Control Panel and set new passwords for all FTP users.
    • It is advisable that you set complex, alphanumeric passwords and frequently change them for additional security.
  • We have reset the passwords for all FTP users across all Linux Hosting Packages.

    •  

    Cheers, Server Team


    Related Articles You Are Probably Interested In:

    1. NEWS: Twitter Resets User Passwords in Wake of Phishing Attack
    2. Latest Facebook Viral Spam Attack
    3. Twitter’s Security Flaw exploited : Twitter Virus – Potential viral attack

    One Response to “Update on the Gumblar Attack front”

    1. ircguru says:
      November 8, 2009 at 11:09 am

      Nice Post, btw do you know any good usenet archives and or mailing list archives site for unix / linux / bsd

      Reply

    Leave a Reply Cancel reply

    Your email address will not be published. Required fields are marked *

    *

    *

    CAPTCHA Image
    Refresh Image

    *

    You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

     Subscribe to OC Blog! 

    Subscribe to OC Blog

    Stay tuned to the Latest updates and tips in the Webmaster World




    Most Popular Posts

    • List of High PR do follow blogs (Verified) (312)
    • Next Google Page rank - PR update 2011 (278)
    • Market Samurai Discount – Save 80 USD! (232)
    • 300 High paying adsense keywords 2011 (104)
    • List of High PR Dofollow Directories 2011 (90)
    • 22 OpenSource Forum Scripts - Details and Download: update list (82)
    • Best Classifieds Ads Scripts (75)
    • How to modify the Wordpress comment Form (66)
    • Review of the List of the Best Social Networking websites 2011 (61)
    • List of 200 Highest paying Adsense Keywords : Updated list 2010 (44)
    • Featured Interviews: Harsh Agarwal from ShoutMeLoud.com (44)
    • 10 Best Premium Wordpress Plugins (43)
    • Elegant Themes Discount 2011 (Save 10 USD) (42)
    • List of all Top Social Networking websites as on 2010 (38)
    • One of the Biggest SEO Secret for Linkbuilding (37)
    • 14 Best Ajax Scripts to use for any website (37)
    • Download KeywordLuv WordPress Plugin (37)
    • How i earn Big Bucks from my blog Doing Nothing! (37)
    • Fatal Error on WordPress 3.3 Version Upgrade (37)
    • 30 Best wordpress Plugins required for Any WP Blog (36)
    About OrangeCopper Network 

    Who am I? Am Joshu. I enjoy blogging about webmaster related stuff and technology. Xtras - I Design, Develop, Blog and Support the Open Source. Passions: I Love Music, Photography, Design, Development, Cycling, Travelling and sleeping (Favorite)

    What i could do for you: Ive been working on various shades of the web for over 11 years now and learned the hard way, Now i could help you learn it the Easy way. OrangeCopper is a Webmaster community that i started in the year 2002 and is now a platform for webmasters around the world. Thankyou for spending your time to visit Blog. I would love to get connected every webmaster reading this, follow me on Twitter and i would auto follow you. Thanks again, Happy Surfing!

    Interested to Learn Professional Blogging? Check out my NapIncome Blog where I share all the secrets to build a professional blog and earn money from ProBlogging.

    Please Subscribe to the Blog Newsletter to get regular weekly update
    Twitter: http://www.twitter.com/orangecopper | Subscribe to feeds : http://feeds.feedburner.com/orangecopper/ilRl

    Other OrangeCopper Network Websites

    ConnectRing Web Directory | UsedMobiles.in | UsedGadgets.in | NapIncome Strategy Blog | HippieMonk Technology Blog | All Good WordPress Themes | PixelTribes Photography Blog | Yscream Web Hosting

    Favorite Articles

    • List Of Best Classifieds Ads Scripts Ever (Free & premium)
    • How to triple your Blog Subscription rates / opt-ins – It Worked for me!
    • You can certainly spend Half a Dollar For creating a GREAT Blog
    • How i earn Big Bucks from my blog Doing Nothing!
    • 35 best free wordpress themes for download: updated list 2010
    • 22 Web 2.0 Colors and their codes in HTML
    • 48+ web Design Related Twitter Accounts To Follow
    • Make a web 2 icon with Photoshop in easy 8 steps
    • List of 62 Free Press Release websites

      Most Rated Articles

    • Compare WordPress – Joomla – Drupal and their features
    • 7 Excellent jQuery menus and jQuery examples and downloads
    • 5 Most Important To Do s for a New Blog Launch
    • How to colorize with adobe Photoshop
    • Free Magento Themes / Templates Download: updated list
    • How to install wordpress step by step tutorial
    • List of 200 Highest paying Adsense Keywords : Updated list 2010
    • How to display Exit Splash or Exit message for website
    • How to promote your old Blog posts