Vulnerability in OpenX advertising platform exploited in Finland
Published 07.05.2012FICORA's information security unit CERT-FI has been notified in Finland of almost 10 websites which have been hacked by exploiting a vulnerability in the OpenX advertising platform.
CERT-FI urges administrators of sites containing OpenX advertising platforms to check whether their servers have been hacked. The following signs may indicate that there has been a data breach:
- Files called debug.php and xmarket.php have been added to the server.
- Other new files such as php or perl scripts have been added to the server.
- Changes have been made to the server's .htaccess files.
- Users with new admin rights have been added to the advertising platform.
How are normal internet users affected by the vulnerability?
The contaminated websites may spread malware. It is advisable to avoid the malware infection by ensuring that your software and operating system are updated, installing anti-virus software and keeping it updated.
Further information is available on CERT-FI's website
Duty officer of CERT-FI, tel. +358 9 6966 510