Page 1 of 1
I'VE BEEN HACKED!!!!
Posted: Mon Sep 01, 2008 10:39 pm
by newagekat
Help, PLEASE
Just got a call from a client saying he's been hacked. I checked all my clients and it seems that only clients using cmsms are affected. what do i do?
the home page of all these sites say Hacked by Smallw0orm // OTTAMAN EMPIRE was here
Re: I'VE BEEN HACKED!!!!
Posted: Mon Sep 01, 2008 11:24 pm
by newagekat
sorry, forgot to add:
some clients are on v1.4.1 spring garden
others are on v1.0.6 "Niihau"
it does not seem to matter on the version, it seems that the config.php file has been overwritten. I do have an urgent ticket in with the host, but wondered if there was anything I could do on my end?
thank you.
Re: I'VE BEEN HACKED!!!!
Posted: Mon Sep 01, 2008 11:34 pm
by Nullig
Sounds like the Host was hacked.
Nullig
Re: I'VE BEEN HACKED!!!!
Posted: Wed Sep 03, 2008 6:03 am
by Dr.CSS
Most likely the host, if you have 1.4.1 and it was hit then it isn't CMSMS because any vulnerabilities have been removed since 1.3 iirc...
Re: I'VE BEEN HACKED!!!!
Posted: Wed Sep 10, 2008 1:43 pm
by Pierre M.
newagekat wrote:
some clients are on v1.4.1 spring garden
This is pretty safe with a professionnal hosting provider. It can be hardened following the security guide (see howtos in wiki).
newagekat wrote:
others are on v1.0.6 "Niihau"
This is known unsafe and crackable for a long time.
Pierre M.