Irregular Expressions

Sep 29 2012   10:20PM GMT

phpMyAdmin Backdoor

Dan O'Connor Dan O'Connor Profile: Dan O'Connor

A Korean mirror has been serving a backdoor’d version of phpMyAdmin since at least the 22nd of September.

http://sourceforge.net/blog/phpmyadmin-back-door/

And for Metasploit.

http://packetstormsecurity.org/files/116878/phpMyAdmin-3.5.2.2-server_sync.php-Backdoor.html

It is a very clever backdoor, I am sure it took a lot of planning and execution to get it into the tree. It appears that only about four hundred copies were downloaded and the mirror is currently offline.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: