The recently discovered Exploit kit "DotkaChef" (aka DotCache, DotCacheF) is appeared to be targeting the websites running the IP Board forum applications.
The exploit pack was first discovered by Chris Wakelin. Kahu Security analyzed this pack and found all of the infected websites used by "Dotcachef' are running IP Board.
The researcher say cyber criminals might have exploited an old PHP code execution(CVE-2012-5692) vulnerability affecting 3.3.4 and previous IP board forum software versions.
Once the website is successfully compromised the"Dotcachef" is being uploaded to the victim's website in one folder with random name.
You can find the technical details here: http://www.kahusecurity.com/2013/analyzing-dotkachef-exploit-pack/
The exploit pack was first discovered by Chris Wakelin. Kahu Security analyzed this pack and found all of the infected websites used by "Dotcachef' are running IP Board.
The researcher say cyber criminals might have exploited an old PHP code execution(CVE-2012-5692) vulnerability affecting 3.3.4 and previous IP board forum software versions.
Once the website is successfully compromised the"Dotcachef" is being uploaded to the victim's website in one folder with random name.
You can find the technical details here: http://www.kahusecurity.com/2013/analyzing-dotkachef-exploit-pack/