Security vulnerabilities found in HyperVM and LXadmin/Kloxo

Recently, there were multiple security hyperVM discovered in hyperVM and Lxadmin/Kloxo and they had instructed to upgrade hyperVM/Kloxo systems to the latest version as soon as possible. If you have still not upgraded your HyperVM/Kloxo systems then it’s time to upgrade the system. They have not yet posted the vulnerabilities but according to them they will post within next few days.

To upgrade hyperVM or Kloxo master, Run:

/script/upcp

If you do not upgrade your system then there is a chance that someone can compromise your server and take full control on your server.

“This site may harm your computer” on every Google search result ??

Recently, you might have noticed that every Google search results were showing the message “This site may harm your computer”. This was happened on Jan 31, 2009 between 6:30 a.m. PST and 7:25 a.m. PST. This was clearly an error.

According to Google, it was a human error. Google flags search results with the message “This site may harm your computer” if the site has some malicious code on the page. This protects us from visiting such web sites which can harm our computer. Google and StopBadware.org work with together to maintain the list of such web sites and this list is periodically update.

As per Google the error was occurred because of the following reason:
“the URL of ‘/’ was mistakenly checked in as a value to the file and ‘/’ expands to all URLs. Fortunately, our on-call site reliability team found the problem quickly and reverted the file. Since we push these updates in a staggered and rolling fashion, the errors began appearing between 6:27 a.m. and 6:40 a.m. and began disappearing between 7:10 and 7:25 a.m., so the duration of the problem for any particular user was approximately 40 minutes.”

In fact it was an error from their and but they worked hard to fix it as soon as possible. Thanks to Google team to fix this in short time.

For more details on this incident, kindly read this article.

Pentagon computers infected by agent.btz Virus / Worm

Recently Some Defense Department computer networks have been infected with a virus / worm in Pentagon US.

Fox news reported that the virus has continued to spread rapidly through military networks for nearly a week now. Wired.com reports that the virus is a worm named Agent.btz that travels through removable storage devices such as flash drives and cards, DVDs, CDs and floppy discs. Agent.btz is derived from the “SillyFDC” worm and its progeny, which date back to the early 1990s. DOD regulation of employee use of removable storage devices is also unconfirmed, but existing internal emails have substantiated these rumors.

Source: atelier-us.com

Kevin

IFrame Hacking - JavaScript Hacking

Now a days, it is not an easy job to develop and secure web site. Each and every day, you will find a new way to attack on the web site, servers or even entire network. Today I will discuss about two types of web site hacking which are most common.

[1] IFrame Hacking
[2] JavaScript Hacking

In both, the hackers add suspicious IFrame or JavaScript code in your web site page. Such code generally links to the malware or badware site.

There are many reasons for such type of hacking.

- Your control panel or FTP password is compromised. If you system is infected with Virus/Trojan/Spyware then there a chance that hacker gets some confidential information from your system and may damage your system. It is a best practice to have Anti Virus installed on the system and also it should be upgraded to its latest version. To fix this security hole, you
can simply reset your password to hard one. Also never set dictionary words as your password.

- The server where your site is compromised.

- XSS (Cross Site Scripting) vulnerability in your site. If your site has XSS vulnerability then there is a high risk for such type of hacking.

- SQL injection. If your site is not designed to prevent SQL injection then hacker can easily get the access your database and insert suspicious code.

There are many other reasons then as mentioned above. You should test your web in all aspects before putting it on live.

Kevin

Help Us

Recommended Host

• Follow us on Twitter

• Sponsor Links

• Feedburner

  
  

• Categories

  • Business NEWS (1)
  • cPanel Hosting Tutorials (2)
  • General (6)
  • Linux Commands (1)
  • Operating Systems (8)
  • Programming Languages (4)
  • Search Engine Optimization (4)
  • Site and Server Security (4)
  • Web Hosting (20)
  • Web Hosting Control Panels (12)

• Meta

  • Register
  • Log in
  • Entries RSS
  • Comments RSS
  • WordPress.org

• Latest Forum Posts

  • SEO MOD for PHPbb3
  • web engineering
  • need help
  • need answer
  • New Logo for WebHostingDiscussion
  • Microsoft launching free antivirus Service Morro
  • Editor for PHP

• Blogroll

  • Affiliate Software
  • Blogarama
  • BlogRankings.com
  • Web Hosting Discussion

• Recent Posts

  • Alternative for HyperVM and Kloxo/Lxadmin
  • WordPress 2.8 is available now
  • Security vulnerabilities found in HyperVM and LXadmin/Kloxo
  • How to change MySQL database collation from phpMyAdmin in cPanel
  • Create a tar archive

• Tags

  AwStats boot.ini cheap hosting Check disk Chkdsk cPanel cPanel backup cPanel full backup cpanel transfer Database error DirectAdmin DNS ensim fdisk /mbr FIle System check fixmbr Free Web Hosting free website builder FSCK HELM home directory backup Host Table Link Exchange link popularity Linux MBR move web site cpanel / whm MySQL mysql backup OpenVZ Operating Systems page rank PHP Pleask restore backup transfer web site cPanel Unix virtual server virtuozzo VPS web site builder web site builder tool Windows xenserver XOSL
• 

• Archives

  • June 2009
  • May 2009
  • April 2009
  • February 2009
  • January 2009
  • December 2008
  • November 2008
  • October 2008
  • August 2008
  • July 2008
  • June 2008
  • July 2007
  • June 2007
  • May 2007
  • April 2007
  • March 2007

Copyright © 2008 · All Rights Reserved · Revolution Blog theme by Brian Gardner - WordPress · Log in