[TYPO3-core] heise.de: Hunderte Typo3-Webseiten gehackt
JoH asenau
info at cybercraft.de
Tue Mar 18 13:51:23 CET 2014
Am 18.03.2014 12:59, schrieb Markus Klein:
> Guys,
>
> there are reports about Fiona CMS being affected as well.
> So easy to conclude: Not a TYPO3 bug, not a PHP bug.
> Apache or even below.
Sorry, but it's not that easy, since the hackers might have used
different security holes to infect target systems. Actually any hole
giving you write access to the target files would have been a possible
entry. So the one they used for TYPO3 based systems might have been
completely different to the one they used for other systems.
From a TYPO3 point of view any known security hole has been fixed, and
by looking at the version numbers it's not impossible but not very
likely as well, that they discovered a new hole in TYPO3.
Still infected systems should check any piece of software they are
running and not just focus on the CMS.
HDH
Joey
--
Wenn man keine Ahnung hat: Einfach mal Fresse halten!
(If you have no clues: simply shut your gob sometimes!)
Dieter Nuhr, German comedian
Xing: http://contact.cybercraft.de
Twitter: http://twitter.com/bunnyfield
TYPO3 cookbook (2nd edition): http://www.typo3experts.com
More information about the TYPO3-team-core
mailing list