Apache Tomcat Servers Targeted by Self-Replicating Malware

21

Nov

2013

Symantec has identified that servers running Apache Tomcat are being affected by a back door worm that acts as a Java Servelet; yet instead of creating a web page, it behaves as an IRC bot that receives commands from the attacker.

Users landing on the pages from the compromised server are not in any danger though, because the threat (Java.Tomdep) is designed to scan and infect other Tomcat servers.

Logging to other servers seems to be achieved by trying a set of weak …

Tags: [Softpedia]adservers apache tomcat

Written by Softpedia

0 Comments

Comments are closed.

Archives

Archives

About Us

Our mission is to help users and also IT security passionate to reach relevant information related to cyber security.

This publication contains a lot of information and guidance on how to better protect your IT systems, data and activities from malicious factors, and also on how to safely navigate the Internet.

We look forward to hearing from you about cyber safety. Please let us know if there’s something specific you’re interested in learning about.

Contact Us

Name *
Your name is required

E-mail *
Email address entered is invalid

Please enter a message

Incorrect security code

The Latest in IT Security

Apache Tomcat Servers Targeted by Self-Replicating Malware

Categories

Featured

Archives

Latest Comments

About Us

Contact Us