Skip to main content


NSA partners with Apache to release open-source data traffic program

posted onNovember 25, 2014
by l33tdawg

Many of you probably think that the National Security Agency (NSA) and open-source software get along like a house on fire. That's to say, flaming destruction. You would be wrong.

In partnership with the Apache Software Foundation, the NSA announced on Tuesday it is releasing the source code for Niagarafiles (Nifi). The spy agency said Nifi "automates data flows among multiple computer networks, even when data formats and protocols differ."

Secure your Apache server from DDoS, Slowloris, and DNS Injection attacks

posted onDecember 4, 2013
by l33tdawg

Apache is the most widely used web server on the planet, and it's also one of the most widely attacked. To that end, it's always smart to lock down your Apache server as best as possible. This goes well beyond just locking down your network -- you need to give that Apache server as much attention as it might get from outside sources.

I'll walk you through the process of preventing your Apache server from Distributed Denial of Service (DDoS), Slowloris, and DNS Injection attacks. These breakins are quite simple to prevent, as long as you take the time to lock down that server.

Chinese hackers target servers running Apache Struts apps

posted onAugust 15, 2013
by l33tdawg

Chinese hackers are using an automated tool to exploit known vulnerabilities in Apache Struts, in order to install backdoors on servers hosting applications developed with the framework.

Apache Struts is a popular open-source framework for developing Java-based Web applications that's maintained by the Apache Software Foundation.

Attack hitting Apache websites is invisible to the naked eye

posted onApril 30, 2013
by l33tdawg

Ongoing exploits infecting tens of thousands of reputable sites running the Apache Web server have only grown more powerful and stealthy since Ars first reported on them four weeks ago. Researchers have now documented highly sophisticated features that make these exploits invisible without the use of special forensic detection methods.

Hackers drop rogue Apache modules and SSH backdoors on web servers

posted onJanuary 28, 2013
by l33tdawg

A group of hackers that are infecting web servers with rogue Apache modules are also creating backdoors to Secure Shell (SSH) services in order to steal log-in credentials from administrators and users.

The hackers are replacing all of the SSH binary files on the compromised servers with backdoor-equipped versions that are designed to send the hostname, username and password for incoming and outgoing SSH connections to attacker-controlled servers, security researchers from web security firm Sucuri said in a blog post.