Slashdot Mirror

← Back to Stories (view on slashdot.org)

MySQL Servers Hijacked With Malware To Perform DDoS Attacks (symantec.com)

Posted by samzenpus on Wednesday October 28, 2015 @06:37AM from the protect-ya-neck dept.

An anonymous reader writes with news of a malware campaign using hijacked MySQL servers to launch DDoS attacks. Symantec reports: "Attackers are compromising MySQL servers with the Chikdos malware to force them to conduct DDoS attacks against other targets. According to Symantec telemetry, the majority of the compromised servers are in India, followed by China, Brazil and the Netherlands, and are being used to launch attacks against an US hosting provider and a Chinese IP address."

2 of 55 comments (clear)

Min score:

Reason:

Sort:

Only infects Windows MySQL servers? by Anonymous Coward · 2015-10-28 06:41 · Score: 0, Informative

So that's like what, three?
1. Re:Only infects Windows MySQL servers? by Major+Blud · 2015-10-28 07:45 · Score: 4, Informative
  
  AC is right, this only seems to infect MySQL running on Windows systems:
  http://www.symantec.com/connec...
  It modifies registry entries that fool with Termial Services and other nasty stuff. You should be safe on Linux/BSD.
  
  --
  If you post as Anonymous Coward, don't expect a reply.