An attack from Margent is a popular mode of inbreak where even an ordinary hacker can take advantage of this inbreak to attack Web sites. This week, Websense Security Lab discovered that several Turkish government Web sites were compromised by this kind of attack.
In a Margent attack, an attacker gets control permission of a vulnerable Web site that is hosted on IP address 220.127.116.11. Once the attacker gains control to that Web site, they can access the server's file system. The attacker then modifies the homepage of a Turkish government's Web site that is also hosted on the same server.
Screenshot of some compromised domains:
Defaced screenshot of a compromised Turkish government domain:
Websense Email Security and Websense Web Security protect against this kind of blended threat with ACE, our Advanced Classification Engine.
Leave a reply