The news announced by Netcraft, it looks like a cPanel Security Hole have been exploited to redirect visitors to outside web pages that use the unpatched VML exploit in Internet Explorer to install trojans on computers of users. Site owners said iframe code inserted into their web pages was redirecting users to the malware-laden pages.
HostGator says hackers compromised its servers using a previously unknown security hole in cPanel, the control panel software that is widely used by hosting providers. “I can tell you with all accuracy that this is definitely due to a cPanel exploit that provides root access and all cPanel servers are affected,” said HostGator system administrator Tim Greer. “This issue affects all versions of cPanel, from what I can tell, from years ago to the current releases, including Stable, Release, Current and Edge.”
cPanel has just released a fix. “Running /scripts/upcp will fix the vulnerability in all builds,” cPanel said in a message on its user forums. “Please note that this is a local exploit which requires access to a cPanel account. … If you believe you have been exploited through this vulnerability, you are welcome to submit a support request for assistance.”

RELATED ARTICLESMORE FROM AUTHOR