"Web Shell Malware Continues to Evade Many Security Tools"

The US National Security Agency (NSA) and the Australian Signals Directorate released an advisory warning organizations about the increased use of web shell malware by attackers to gain persistent access to compromised networks. Web shells are malicious scripts uploaded to a web server to allow attackers to control the system remotely. Internet-facing web servers, non-internet facing internal content management systems, or network device management interfaces can be infected with web shell malware. The exploitation of web application vulnerabilities and weak server security configuration can lead to the installation of web shell malware. This article continues to discuss the concept of web shells, as well as the prevention and detection of web shell malware installation.

Help Net Security reports "Web Shell Malware Continues to Evade Many Security Tools"