Webmaster Forum

Go Back   Webmaster Forum > The Webmaster Forums > Tech Talk

Tech Talk Discuss computer issues, tech gadgets and hardware, operating systems, browsers, broadband and wireless, virus, trojan, and spyware help.


Closed Thread
 
Thread Tools Display Modes
Share |
  #1  
Old 12-06-2008, 07:10 AM
bradpm bradpm is offline
Junior Member
 
Join Date: 01-14-08
Posts: 9
iTrader: 0 / 0%
Website Hacked - An Interesting One!

Ok guys, heres an interesting one for you; my website (Which i honestly haven't used for months) has been hacked.
[url removed]
I am not going to say there names because obviously all they want is media attention and some payment.
My password and username is the same for ftp.

Any ideas on how this happened?
How i can get rid of this rubbish?

Thanks

Last edited by Kream; 12-07-2008 at 09:13 PM.
 

Advertisement

Advertisement

  #2  
Old 12-06-2008, 01:55 PM
KGCustoms's Avatar
KGCustoms KGCustoms is offline
Contributing Member
 
Join Date: 12-04-08
Location: Door County, WI
Posts: 204
iTrader: 0 / 0%
My password and username is the same for ftp.

Hmm, let's take a wild guess...

Change your password to something stronger; there are a number of decent password generators out there if you search for them.
 
  #3  
Old 12-08-2008, 05:57 AM
pinkfluffybunny's Avatar
pinkfluffybunny pinkfluffybunny is offline
v7n Mentor
 
Join Date: 05-18-04
Location: Florida
Posts: 1,584
iTrader: 0 / 0%
FTP's on most all servers are brut forced 20 times a second.

I don't use FTP for sites - just fills up the logs.
Sooner or later they'll get in.
 
  #4  
Old 12-08-2008, 04:20 PM
mzonas mzonas is offline
Contributing Member
 
Join Date: 12-07-08
Location: Hatfield, UK
Posts: 59
iTrader: 2 / 100%
You could got a keylogger or something. There are various ways how to get your website hacked. And odn't use the same password on all sites. They are closing in ...
 
  #5  
Old 12-08-2008, 06:57 PM
pinkfluffybunny's Avatar
pinkfluffybunny pinkfluffybunny is offline
v7n Mentor
 
Join Date: 05-18-04
Location: Florida
Posts: 1,584
iTrader: 0 / 0%
If you access your site via ftp, the only reason you don't see the brut force attempts is because you haven't seen the logs.

sooner or later, if they want in via ftp they will get in.
 
  #6  
Old 12-15-2008, 03:51 AM
badkiddies badkiddies is offline
Junior Member
 
Join Date: 12-12-08
Posts: 16
iTrader: 0 / 0%
keylogger, sniffing be aware for that mallicious program...

change ur password, periodictly...

Best Regards,
BadKiddies
 
  #7  
Old 12-15-2008, 12:21 PM
Bart Bart is offline
Contributing Member
 
Join Date: 12-11-08
Posts: 71
iTrader: 0 / 0%
If you want me to take a quick look PM me, my business is web app security and pentesting.

While FTP bruting does work its takes a long time, and unless you've made some enemy's who just want to embarrass you i think this was most likely a crime of opportunity. SQL injection, XSS/session hijacking most likely.

Last edited by Bart; 12-15-2008 at 12:40 PM.
 
  #8  
Old 12-15-2008, 03:06 PM
diligent's Avatar
diligent diligent is offline
Contributing Member
 
Join Date: 08-17-08
Posts: 72
iTrader: 0 / 0%
Quote:
Originally Posted by pinkfluffybunny View Post
If you access your site via ftp, the only reason you don't see the brut force attempts is because you haven't seen the logs.

sooner or later, if they want in via ftp they will get in.
Brute forcing is unlikely, unless the host in question has really not taken any measures at all to secure their servers against it.

However as the OP said the password/username are the same, thats more or less obvious compared to any other type of attack.
 
  #9  
Old 12-18-2008, 01:14 PM
antirem's Avatar
antirem antirem is offline
Contributing Member
 
Join Date: 12-12-07
Posts: 226
iTrader: 0 / 0%
Use a CMS over custom php code, its been over the coals and is secure.
 
  #10  
Old 12-19-2008, 07:20 AM
~kev~'s Avatar
~kev~ ~kev~ is offline
v7n Mentor
 
Join Date: 02-06-08
Location: Texas
Posts: 1,544
iTrader: 0 / 0%
Quote:
Originally Posted by bradpm View Post
My password and username is the same for ftp.

Any ideas on how this happened?
How i can get rid of this rubbish?

Thanks
If you used the same thing for your username and password, you deserved to be hacked.

Most people that have "really" been hacked do not post a link because they are embarrassed of the issue. More like this thread was started in the hopes that people would click the link to go see your "hacked" website.
 
  #11  
Old 01-15-2009, 02:57 AM
Darkender Darkender is offline
Contributing Member
 
Join Date: 01-11-09
Posts: 59
iTrader: 0 / 0%
Also your site can get hacked if it's coded poorly. Usually it's nothing to do with your hosting provider unless your using some noname company
 
Go Back   Webmaster Forum > The Webmaster Forums > Tech Talk

Closed Thread


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
My Website Hacked/Trojan Virus doogers Web Hosting Forum 8 10-22-2008 06:40 PM


V7N Network
Get exposure! V7N I Love Photography V7N SEO Blog V7N Directory


All times are GMT -7. The time now is 04:43 PM.
Powered by vBulletin
Copyright 2000-2014 Jelsoft Enterprises Limited.
Copyright © 2003 - 2018 VIX-WomensForum LLC