Yes, but the exploit was likely not the Linux/Apache combo, but something else like say... Insecure PHP scripts.
Not only do we identify hacked sites, but we have an incident response team that works with hosting companies, ISPs, domain registrars, and peering points to prevent consumers from reaching these sites. Often the owner of the computer will provide us forensics for further investigation. You'd be surprised how many of the exploits are not insecure PHP scripts, but simple root kit attacks.
Unfortunately, this site has too many Microsoft haters to discuss web security without bias. I just thought I would provide real evidence that might allow them to make informed statements.
I work for a company that identifies hacked sites that house phishing attacks. We have analyzed tens of thousands of sites. It was a surprise to me, but over 90% of hacked sites out there are running Linux/Apache -- not Windows/IIS as most people would suspect.
The problem is that there are too many people out there install the free version of open source software, but don't have the ability to apply the patches. Since known vulnerabilities are well documented and kits exists to scan these weaknesses, Linux/Apache gets hacked.
Slashdot Mirror
I work for a company that identifies hacked sites that house phishing attacks. We have analyzed tens of thousands of sites. It was a surprise to me, but over 90% of hacked sites out there are running Linux/Apache -- not Windows/IIS as most people would suspect. The problem is that there are too many people out there install the free version of open source software, but don't have the ability to apply the patches. Since known vulnerabilities are well documented and kits exists to scan these weaknesses, Linux/Apache gets hacked.