Apache-based servers for websites are being targeted with a backdoor attack meant to redirect traffic to sites with Blackhole exploit kits, security researchers at ESET and Sucuri say. "The backdoor's configuration is sent by the attacker using HTTP requests that are not only obfuscated, but also not logged by Apache, reducing the likelihood of detection by conventional monitoring tools," ESET's Righard Zwienenberg said.

Related Summaries