InMotion a hosting provider based in California was recently compromised leading to its few thousand websites' top pages getting defaced that were apparently manipulated for serving malware. Help Net Security published this on September 28, 2011.
Todd Robinson, President of InMotion, who on September 26, 2011 confirmed the compromise through an online post he added to the Web-forum of the hosting vendor, stated that website defacement was the sole objective of the hacker. Help Net Security published this.
Robinson stated that at the present juncture, the assault's maliciousness seemed to be restricted to substituting the main pages of the Internet sites. The defacement became possible via placing the index.php file of the attacker as a substitute for the index files stored inside the public_html directories. According to the President, the objective was not to steal passwords. However, the hacker employed an exploit for altering the password of a system so he could gain admission into the index files. The exploit had been blocked as also the password reset, Robinson assured.
...
