Sebuah artikel di thehackernews.com berjudul Python-based bots exploiting PHP, artikel ini membahas tentang kampanye baru yang menargetkan server web yang menjalankan aplikasi berbasis PHP untuk mempromosikan platform perjudian di Indonesia. Para peneliti keamanan siber telah menemukan bahwa bot berbasis Python digunakan untuk mengeksploitasi ribuan aplikasi web.
Serangan ini melibatkan penggunaan GSocket untuk memanfaatkan web shell yang sudah ada di server yang sudah dikompromisis. Sebagian besar serangan ditemukan menargetkan server yang menjalankan sistem manajemen pembelajaran populer (LMS) yang disebut Moodle. Serangan ini juga menambahkan file sistem bashrc dan crontab untuk memastikan bahwa GSocket tetap berjalan bahkan setelah web shell dihapus.
Akses yang diberikan oleh GSocket ke server target digunakan untuk mengirimkan file PHP yang berisi konten HTML yang merujuk ke layanan perjudian online, terutama yang ditujukan untuk pengguna Indonesia. Tujuannya adalah untuk menargetkan pengguna yang mencari layanan perjudian yang diketahui, lalu mengarahkan mereka ke domain lain.
Para peneliti keamanan siber juga menemukan kampanye malware yang luas yang telah menargetkan lebih dari 5.000 situs di seluruh dunia untuk membuat akun administrator yang tidak sah, menginstal plugin berbahaya dari server jarak jauh, dan menyalurkan data kredensial kembali ke sana. Malware ini diberi nama kode WP3.XYZ.
Untuk mengurangi risiko serangan ini, disarankan agar pemilik situs WordPress memperbarui plugin mereka, memblokir domain jahat menggunakan firewall, memindai akun atau plugin admin yang mencurigakan, dan menghapusnya.
Artikel tersebut membahas tentang bot berbasis Python yang mengeksploitasi kerentanan PHP. Bot ini digunakan oleh penyerang untuk mendapatkan akses tidak sah dan mengambil alih server web yang rentan. Mereka memanfaatkan celah keamanan dalam script PHP untuk menginfeksi server dan melakukan berbagai aktivitas jahat, seperti mencuri data atau meluncurkan serangan lain.
Penyerang menggunakan bot ini untuk melakukan serangan otomatis pada banyak target sekaligus, memanfaatkan script yang lemah untuk memperluas jaringan mereka. Artikel tersebut juga menyarankan langkah-langkah pencegahan yang bisa diambil oleh administrator server, seperti memperbarui dan mengamankan script PHP mereka, serta memonitor aktivitas yang mencurigakan.
Info via :
https://thehackernews.com/2025/01/python-based-bots-exploiting-php.html?m=1
토토천국이 추천하는 안전한 토토사이트, 이제 걱정 마세요.
100% 검증된 먹튀검증, 토토검증소에서 확인하세요.
신뢰받는 먹튀검증를 토토검증소에서 만나보세요.
Your blog post was like a ray of sunshine on a cloudy day. Thank you for brightening my mood!
먹튀 사고가 걱정된다면, 먹튀검증사이트에서 검증된 토토사이트 정보를 확인해 보세요.
Your blog post was so relatable – it’s like you were reading my mind! Thank you for putting my thoughts into words.
Your writing always leaves me feeling inspired and motivated. Thank you for sharing your wisdom with the world.
Your writing always leaves me feeling uplifted and empowered. Thank you for being such a positive influence.
먹튀검증 안전하게 이용하려면 토토검증소를 이용하세요.
토토검증소와 함께하는 안전한 먹튀검증 추천!
Your blog post was like a breath of fresh air. Thank you for reminding me to slow down and appreciate the beauty of life.
먹튀검증 선택에 고민이 있다면 토토검증소와 함께하세요.
Your passion for this subject really shines through in your writing. It’s inspiring to see someone so enthusiastic about what they do.
토토검증소의 추천 먹튀검증로 안전하게 시작하세요.
Your blog post was a real eye-opener for me. Thank you for challenging my preconceived notions and expanding my worldview.
Warning This is a scam site. Be careful of these sites. http://www.ggongta.com is a scam site.
토토검증소와 함께라면 먹튀검증 사기 걱정 끝!
검증된 먹튀검증만 골라드립니다.
Your writing is so eloquent and polished. It’s clear that you’re a true master of your craft.
확실한 검증이 필요한 스포츠 베팅! 먹튀감정사에서 안전한 토토사이트를 확인하세요.
Your blog post was exactly what I needed to read right now. It’s amazing how you always seem to know just what to say.
Your writing has a way of making complex topics seem approachable. Thank you for demystifying this subject for me.
I can see a lot of effort went into writing this, and it shows. You did a great job explaining complicated concepts in an easy-to-understand way.
먹튀 사고를 방지하는 최고의 방법! 먹튀감정사 웹사이트에서 안전한 사이트를 확인하세요.
Your writing has a way of making complex topics seem approachable. Thank you for demystifying this subject for me.
I’m so glad I came across this article! It’s informative, easy to read, and offers a fresh perspective on a topic I didn’t know much about before.
I’ve been following your blog for a while now, and your latest post certainly didn’t disappoint. Keep up the excellent work!
The quality of this article is exceptional. The way you presented each aspect of the topic was clear, making this a highly informative and enjoyable read.
https://www.youtube.com/watch?v=UlbSNkXyMuM
Your blog post was like a warm hug on a cold day. Thank you for spreading positivity and kindness through your words.
As someone who’s new to this topic, your blog post was incredibly informative. Thank you for breaking it down in such an easy-to-understand way.
I’m truly impressed by how well you explained such a complex topic. Your approach is both thorough and easy to follow, which made the article a pleasure to read.
Your blog post was like a ray of sunshine on a cloudy day. Thank you for brightening my mood!
Your writing always leaves me feeling uplifted and empowered. Thank you for being such a positive influence.
Your blog post made me see [topic] in a whole new light. Thank you for broadening my perspective.
Your blog post was so thought-provoking. It’s rare to find content that challenges me to think deeply about important issues.
Your blog post was exactly what I needed to read today. It’s amazing how much insight you’ve packed into just a few paragraphs.
Your blog post was like a crash course in [topic]. I feel like I learned more in five minutes than I have in months of studying.
Your blog post was exactly what I needed to hear today. Thank you for the gentle reminder to practice self-care.
Your passion for this topic is contagious! After reading your blog post, I can’t wait to learn more.
Your blog post was so thought-provoking. It’s rare to find content that challenges me to think deeply about important issues.
I can tell that you put a lot of time and effort into crafting this blog post. It definitely paid off – it’s fantastic!
Your blog post was so relatable – it’s like you were reading my mind! Thank you for putting my thoughts into words.
Your blog post was the perfect blend of informative and entertaining. I couldn’t tear my eyes away from the screen!
I’ve been struggling with this issue for a while now, and your blog post provided some much-needed clarity. Thank you for shedding light on the subject.
Your blog post was like a crash course in [topic]. I feel like I learned more in five minutes than I have in months of studying.
Your blog post was a much-needed reminder to slow down and appreciate the little things in life. Thank you for the dose of positivity!
https://www.youtube.com/watch?v=3p5Gn67pUjI
Free image hosting service https://imgsrc.me/
https://www.youtube.com/watch?v=8lTr4AM_7iM
Your blog post was like a breath of fresh air. Thank you for reminding me to slow down and appreciate the beauty of life.
Your blog post was exactly what I needed to hear today. Thank you for the gentle reminder to practice self-care.
Your writing is so eloquent and polished. It’s clear that you’re a true master of your craft.