WeLiveSecurity

Malicious Apache module used for content injection: Linux/Chapro.A

More than half of all web servers on the Internet use Apache, so when we discovered a malicious Apache module in the wild last month, being used to inject malicious content into web pages displayed by ...
WeLiveSecurity

Malicious Apache Module: a clarification

[Update: here's a comment just added to his original blog by Pierre-Marc. As pointed out here it appears that what we call Linux/Chapro.A has already been publicly discussed here by UnmaskParasites.We ...
ZDNet

Google funds project to secure Apache web server with new Rust component

Google is funding a project at the Internet Security Research Group to port a crucial component of the Apache HTTP web server project from the bug-prone C programming language to a safer alternative ...
Threat Post

New Apache Exploit Doling Out Zeus, Sweet Orange Exploit Kit

UPDATE – A new Apache module, Linux/Chapro.A, is making the rounds, injecting malicious content including a popular Zeus variant into web pages. UPDATE – A new Apache module, Linux/Chapro.A, is making ...
EDN

ESET Uncovers Apache Malware Targeting Online Banking

Analysis of a malicious Apache module, detected by ESET as Linux/Chapro.A, found that the world's most widely used web server, Apache, is being used to carry out these attacks, injecting malicious ...
Diario Oficial

Apache Module mod_info

Once mod_info is loaded into the server, its handler capability is available in all configuration files, including per-directory files (e.g., .htaccess). This may have security-related ramifications ...