View Single Post
  #1   (View Single Post)  
Old 27th November 2012
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,128
Default Backdoor found in Piwik analytics software

From http://h-online.com/-1757246

Quote:
A backdoor has been added to the web server analytics Piwik which allows attackers to take control of a system. Users who have setup Piwik in the last few weeks after downloading it from the server of the open source project and installing it, should review their servers immediately.
EDIT: For the official statement see http://piwik.org/blog/2012/11/securi...2012-nov-26th/
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote