There's an exploit "out there" called "Gumbler" that spreads itself to webmaster's web sites from their personal computers. The virus uses your FTP credentials to upload infections to your sites, injecting obfuscated javascript into html, js and other files on the server. It spreads itself when browsers visit the pages.
There's a story on it at Cnet.com that says some pretty major web properties (on linux servers) have been compromised: tennis.com, variety.com and coldwellbanker.com.
I checked, and my virus scanner on my personal PC (AVG Free) does detect the virus as "Gumbler" and will quarantine it if found. So far, no infection for me. Its recommended that webhosts make sure their development PCs are free of the virus by maintaining regular anti-virus updates and regularly scanning.
As for checking websites, I found one "site scanner" that checks for the obfuscated javascript (it actually checks all pages and links on the site). It is at http://unmaskparasites.com
You can also check Google's evaluation of your sites by appending your site name (generally without the "http://www" portion) to http://www.google.com/safebrowsing/d...e=yoursite.com
There's a story on it at Cnet.com that says some pretty major web properties (on linux servers) have been compromised: tennis.com, variety.com and coldwellbanker.com.
I checked, and my virus scanner on my personal PC (AVG Free) does detect the virus as "Gumbler" and will quarantine it if found. So far, no infection for me. Its recommended that webhosts make sure their development PCs are free of the virus by maintaining regular anti-virus updates and regularly scanning.
As for checking websites, I found one "site scanner" that checks for the obfuscated javascript (it actually checks all pages and links on the site). It is at http://unmaskparasites.com
You can also check Google's evaluation of your sites by appending your site name (generally without the "http://www" portion) to http://www.google.com/safebrowsing/d...e=yoursite.com
Comment