NSA shares list of vulnerabilities commonly exploited to plant web shells


The US National Security Agency (NSA) and the Australian Signals Directorate (ASD) have published a security advisory this week warning companies to search web-facing and internal servers for common web shells.

Web shells are one of today’s most popular forms of malware. The term “web shell” refers to a malicious program or script that’s installed on a hacked server.

Web shells provide a visual interface that hackers can use to interact with the hacked server and its filesystem.

Read more…
Source: ZDNet