Organizations that use Outlook on the Web should also pay attention, as it depends on IIS and could be an interesting target for espionage,” explains Hromcová.ĮSET Research offers several recommendations that can help mitigate against IIS malware attacks. This should be disturbing for all serious web portals that want to protect their visitors’ data, including authentication and payment information.
#Threats to e commerce software
“It is still quite rare for security software to run on IIS servers, which makes it easy for attackers to operate unnoticed for long periods of time.
#Threats to e commerce series
Today, ESET Research is publishing the white paper “Anatomy of native IIS malware” and launching a series of blogposts on the most notable of the newly discovered threats: IIStealer, IISpy and IISerpent. At least five IIS backdoors have been spreading through server exploitation of Microsoft Exchange email servers since 2021, according to ESET telemetry and the results of additional internet-wide scans that ESET researchers performed to detect the presence of these backdoors.Īmong the victims have been governments in Southeast Asia and dozens of companies belonging to various industries located mostly in Canada, Vietnam, and India, but also in the US, New Zealand, South Korea and other countries. Targeting both government mailboxes and e-commerce credit card transactions, as well as aiding in malware distribution, this diverse class of threats operates by eavesdropping on and tampering with the server’s communications. India - AugESET researchers have discovered a set of 10 previously undocumented malware families, implemented as malicious extensions for Internet Information Services (IIS) web server software.