Web Servers Hijacked Using CryptoPHP Backdoor
CryptoPHP is an infection that is found to be active recently. This threat seems to be found to target some websites uses a content management system. According some reports, over 23,000 Web servers infected with CryptoPHP backdoor. Some security experts have found that this infection utilizes backdoored Joomla, WordPress and Drupal themes and plug-ins to compromise webservers on a large scale. It currently abuses the backdoor for illegal search engine optimization, also known as Blackhat SEO. Using CryptoPHP – Backdoored CMS Plugin & Themes, some web servers have been hijacked.
