Dear Users,

Recently thousands of websites in many hosting companies through out the world have being affected by Gumblar attacks.

Investigations shows, the infection is not due to any server vulnerability.

The attack is perpetrated through stolen FTP login credentials. It transmits FTP information to an IP address from an infected machine.
This FTP information is then used to log on to the web server and infect the hosted website.

Given the nature and scope of this attack, it is important that proper security measures be taken at all levels to prevent it. We would like to suggest a few steps that would reduce the vulnerability of your computer and remove existing threats.

We recommend you install an antivirus program with the latest updates and ensure removal of any malware, trojans or key loggers on any machine that you use to manage your website's content via FTP.

Several free antivirus software like AVG, AntiVir, Malwarebytes are available for this purpose.
Regular virus scans will minimize such threats to a great extent.

Once you are confident that you have a clean machine then you should change all FTP passwords.

If you find any discrepancy with the content of your website, please inform our support team immediately.
You need to login to your control panel and set new passwords for all FTP users.

It is advisable that you set complex passwords and regularly update them for added security.


We also recommend that you avoid storing the new FTP passwords directly on the FTP clients.
Variants of this virus have the potential to grab stored passwords on the FTP clients.



Regards,