Apache web server hit by hack attack
The website of the popular open source web server has been hit by hackers.

Apache has confirmed it was hit using a compromised SSH key to access one of its servers, which forced the shutdown of its website and most apache.org services.
The attack forced Apache, which at the last count accounted for nearly 50 per cent of all web servers, to shut down all machines involved as a precautionary measure.
After an initial investigation, it decided the best course of action was to change the DNS for most of its apache.org services to a machine that wasn't affected.
Further investigation revealed that the European fallover and backup machine, aurora.apache.org, was not affected. Although some rogue files had been copied over, none had been executed.
This allowed Apache to restore its websites to the version present before accounts could have been compromised.
Most user facing websites and services are now available, although Apache stated that some machines remained offline.
"To the best of our knowledge, no end users were affected by this incident, and the attackers were not able to escalate their privileges on any machines," said the Apache infrastructure team in a blog post.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
It added: "While we have no evidence that downloads were affected, uses are always advised to check digital signatures when provided."
-
Mitre reveals ten worst hardware security weaknesses in 2021
News The list aims to highlight common hardware flaws to help eliminate them from product development cycles
By Rene Millman
-
New malware plants backdoor on Microsoft web server software
News IIS target of hackers looking to enter victim’s infrastructure
By Rene Millman
-
HPE warns of a critical zero-day flaw in server management software
News There's a workaround for Windows customers, but nothing for Linux admins
By Danny Bradbury
-
BBX BlackBerry Server brings security ruckus for CIOs
News Working with the new BlackBerry Server, BBX will secure enterprise data and provision enterprise apps without blocking consumer apps.
By Mary Branscombe
-
DeviceLock 7 review
Reviews Accidental or deliberate data leakage is now a major security headache for businesses. Dave Mitchell takes a look at DeviceLock 7 to see if it plugs those holes that others leave behind.
By Dave Mitchell
-
UPDATED: Kaspersky hit by cyber criminals?
News The anti-virus specialists have reportedly been beaten at their own game.
By Jennifer Scott
-
DDoS attack turns servers into bots
News A new distributed denial of service attack has been discovered that uses servers to distribute rather than PCs.
By Jennifer Scott
-
Microsoft IIS web server under attack from hackers
News The company has said that exploit code targeting the flaw was ‘not responsibly disclosed’.
By Asavin Wattanajantra