Bitdefender reseachers have discovered a number of brute force attacks against several web site. The attacks have been done using a server at the Massachusetts Institute of Technology (MIT).
The hacking attack against the MIT.edu infrastructure started with a malicious script on one MIT server. One MIT server (CSH-2.MIT.EDU) hosts a malicious script actively used by cyber-crooks to scan the web for vulnerable websites
The crawler searches the MIT infrastructure looking for vulnerable versions of PHPMyAdmin and will try to gain admin rights in order to inject a SQL query into the database. Successfully attacked web sites will have a folder called “muieblackcat” on them.
The MIT infrastructure has been used because it is highly likely to by pass firewalls from this source, they obviously accept traffic from MIT.edu as legit.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.