Security researchers have uncovered a sophisticated cyberattack campaign that exploited publicly exposed ASP.NET machine keys to compromise hundreds of Internet Information Services (IIS) servers worldwide. The operation, detected in late August and early September 2025, deployed a previously undocumented malicious module dubbed >>HijackServer<< that transforms legitimate web servers into tools for search engine manipulation while [...] The post IIS Servers Hijacked via Exposed ASP.NET Machine Keys, Malicious Modules Injected in the Wild appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform. First seen on gbhackers.com Jump to article: gbhackers.com/iis-servers-2/
