A Nightmare.

[xaurav]

Hi !!
This is something alarming for every person who is having website business.

Last night became deadly NightMare for me!!!

My account was Hackeddddddd..........

The hacker , changed my cpanel password
CHanged .htaccess
changed all index files..
and lots more...

but whb supported me at max, they gave me back my access to cpanel(very quick , thx to WHB) ,rest i helped my self.
now i have restored every thing .

But the matter of the fact is this.

How could hacker break into my account.

The possible reason given is non-updated scripts.
It may be true.
There may be few more factors.

One more thing
I have come to know who is the hacker.
His name,picture ,college, dob ,place ,friends and many more.

He belongs to Indonesia ,and i am here in india.
Any one of you tell me what actions can be taken against him.

And its my friendly advise , please keep your
1.PC clean
2.Passwords Strong.
3.Do not access your account from other's Device.
4.Keep your scripts updated.
5.Do apply patches if available.
6.Scan your site against security.
7.The most important thing , always keep the backup.

I know how painful it was ,to know that my account was hacked.

[Matt R.]

There are a few common causes of accounts being hacked.

1) Insecure scripts - by far and away the most common. If you install Wordpress, phpBB etc then you HAVE to make sure you keep it updated.

2) Poor password security - use a combination of letters and numbers and log in using secure SSL connections

3) Malware/spyware ony our PC - logging the usernames and passwords you login with and transmitting them to a third party who then use them maliciously

[maksam]

I read your post here: http://www.webhostingbuzz.com/forum/...ead.php?t=3265 you have a vbulletin, http://almighty.in did that also get defaced/hacked? Also are you on RS9?

[xaurav]

no, i hv that site is on another account...
now i have rescued and restored every site...

[xaurav]

May be hacking was done through Joomla part.
it has some vulnerability

i hope posting some link to other thread is not banned.

http://www.webmasterworld.com/conten...ng/3006023.htm

[xaurav]

Few more links to protect your Sites,and Information around joomla security

http://forums.digitalpoint.com/showthread.php?t=414300

http://www.squidoo.com/protect-your-...gainst-hacking

http://www.stopbadware.org/home/security

[turtlepirate]

As a web business person myself I thank you for your advice. And as far as the hacker goes I don't know how things work in India or Indonesia but in America we're pretty good at suing and prosecuting. He should pay for his actions so that others may learn that hacking should not go tolerated. I wouldn't let him get away with it. Your lucky to have found out who it was. It's comforting to know also that WHB had your back and was able to take quick action.

[StephenJ]

I've never had any security issues with Joomla, except for once upon a time I installed MosCom or whatever it's called and aparantly it doesn't filter out PHP or anything so I got rid of that.

[xaurav]

Issues come when we get hacked.

Reason Behind Hacking was, Overwhelming marketing of one of my site,Which had joomla.
Hacker came in touch with it, and screwed it up.

There Millions Billions ...trillions of sites.
The sites which are highlighted and less secured are targeted first.

[maksam]

I've never had any security issues with Joomla, except for once upon a time I installed MosCom or whatever it's called and aparantly it doesn't filter out PHP or anything so I got rid of that.

Thats right, neither have i. Also i have not even seen a Joomla site get hacked at all.

May be hacking was done through Joomla part.
it has some vulnerability

i hope posting some link to other thread is not banned.

Sorry thats the problem, your link points to a thread back in 2006... its 2008 now. It goes to show that you were running an old version of Joomla or had an outdated one. The latest version would have had everything patched up.

[xaurav]

Thats right, neither have i. Also i have not even seen a Joomla site get hacked at all.



Sorry thats the problem, your link points to a thread back in 2006... its 2008 now. It goes to show that you were running an old version of Joomla or had an outdated one. The latest version would have had everything patched up.

I know post is very old (Discussing the joomla),and joomla version which was hacked. it was just one version earlier , which is now updated.

and ya could you find how your hosting account was hacked??

[aideauxa]

yeah this happened to me 5 minutes ago... and they suspended my account because it said there was a dDOS attack from my ip adress... its probably a virus, so i deleted all my useless programs.... and i also noticed some part of my screeen was not influenced by my mouse, so i could not click... im still suspended and that F@#$+=G Sh/T sucks... can anyone help me ??

i added the email, (in 3 files ) hope you can help !!!
thanks...
alexandre"

[Tony]

So what was the point of posting in someone else's thread? And why did you attach three text files (as opposed to just pasting them in quotes)?

[aideauxa]

well i wasnt sure where and what to post :S

[Tony]

The Lounge or Support forums would work. But keep in mind these aren't tech support forums. Here we can discuss the issue, but really you should be addressing this specific problem via the support system. They have some really smart people working tech support and if you ask them what you need to do they should tell you.

To get the rest of us interested in the issue you need to make it interesting for us. Your own thread, the error messages pasted in and whittled down to just the problem - not page after page of irrelevant and difficult to read records. Remember, we all have our own sites to worry about, so we may not be real anxious to jump in.

[Alan B]

Tony is correct. Forum members give advice on a volunteer basis. To encourage them to help you, you need to know what sort of etiquette is expected. Here is an article in the WebHostingBuzz Company Blog that can help you prepare:
http://www.webhostingbuzz.com/blog/2...d-news-groups/