IT Commandment: Thou shalt not let thy web servers be hacked


Over the past few months I've become increasingly aware of the number of web sites being compromised and used for phishing and/or dropping malware. I expect the owners of the sites were unaware of what was going on. I've contacted ISPs and gotten a number of such sites shut down. I've also read accounts of others in the security community about contacting the website owner, or registrant of the domain name, and that person being shocked and dismayed to learn that their site had been compromised and used for illegal activities.

Why is this happening? I'm told by one expert there is a painfully apparent lack of knowledge of how to secure a web server. IT Commandment: Thou shalt not let thy web servers be hacked | Spyware Confidential | ZDNet.com

Linked by shanmuga Saturday, 15th April 2006 12:37AM