Dutch security firm Fox-IT says 23,000 Web servers were infected with a backdoor called CryptoPHP. The backdoor is a malicious script that provides remote attackers with the ability to execute rogue code. It’s used primarily for black hat search engine optimization (BHSEO), an operation that involves injecting rogue keywords and pages into compromised sites to hijack their search engine rankings and push malicious content higher up in search results. The top five countries were the U.S. (8,657 IP addresses), Germany (2,877) and France (1,231 IP addresses) The Dutch researchers released two Python scripts on GitHub that webmasters can use to scan servers.”]