Hackers have begun using compromised servers instead of client PCs to launch more powerful denial of service attacks.

Hundreds of web servers are infected with a DoS application that transforms them into zombie drones, according to database security firm Imperva. These zombie servers are controlled using a simple web application, consisting of just 90 lines of PHP code.

Attacks launched from web servers may also be more difficult to detect. "Trace backs typically lead to a lone server at a random hosting company," Imperva warns.

Amichai Shulman, Imperva's CTO, claims denial of service attacks from compromised servers are ongoing. "Now that a network of server bots has been created, it will be quite easy for them to 'rent' them out or increase their activity," he said.

"Companies should regularly monitor their Google presence to look for evidence of being compromised." ®

Related stories

• Chinese cybercrooks offer DDoS-for-hire (14 September 2010)
• Bollywood 'recruits DDoS hired guns to fight movie pirates' (10 September 2010)
• Tequila botnet auto-destructs (10 June 2010)
• Texas man cops to botnet-for-hire charges (28 April 2010)
• 'Virtual sit-in' tests line between DDoS and free speech (9 April 2010)
• Unfashionable DDoS attacks still menace websites (23 March 2010)
• Estonian DDoS revenge worm crafter jailed (11 March 2010)
• CIA, PayPal under bizarre SSL assault (29 January 2010)
• Second US man admits DDoS attack on Scientology (27 January 2010)
• Brit ISP knocked offline by Latvian DDOS (8 January 2010)
• DDoS attack scrooges Amazon and others (24 December 2009)