Multiniche website attacked
2015-05-13, 01:35 PM,
#1
My multiniche website has been hacked from a team called "Blacksmith" that they are supposed to be from Bangladesh.

Has anyone faced something similar to their websites?


[Image: Y5NC0xy.png]


P.S: All my domains that are bought from namecheap and are hosted on the same webserver have been hacked.
Reply
2015-05-13, 02:23 PM,
#2
Sounds like some XSS perhaps SSL and SSI get into DB and switch the Index.php form.
If they were nice they only re upped your Index with changes and left all the rest alone, Which in that case you just need to put original Index back up.

Also be mindful of open entry fields that this can happen especially with SSI's, Dont have any Admin.php,Htm's or shtml's change the names around.

Also check with your Hosting provider ask them How this got threw there servers as most hosting providers offer protection against this for like .50 extra.
Latest Thanks - View all

JenniN(2015-05-13 03:44 PM) 
Reply
2015-05-13, 03:44 PM,
#3
(2015-05-13, 02:23 PM)Rival Wrote: Sounds like some XSS perhaps SSL and SSI get into DB and switch the Index.php form.
If they were nice they only re upped your Index with changes and left all the rest alone, Which in that case you just need to put original Index back up.

Also be mindful of open entry fields that this can happen especially with SSI's, Dont have any Admin.php,Htm's or shtml's change the names around.

Also check with your Hosting provider ask them How this got threw there servers as most hosting providers offer protection against this for like .50 extra.

Thanks a lot for this,they've only changed index.html and they've uploaded an encrypted .php file that contained something that seemed to be a malware.
Reply
2015-05-14, 02:12 AM,
#4
Did you install any themes or plugins/scripts that cost money normally, but you got it for free?
'Hackers' often do this by giving away paid themes with backdoors in them.

Any questions related to CPA belong here.
Before posting, make sure you are in the correct section.

I am temporarily absent due to family circumstances.

Reply
2015-05-14, 01:51 PM,
#5
(2015-05-14, 02:12 AM)DutchPride Wrote: Did you install any themes or plugins/scripts that cost money normally, but you got it for free?
'Hackers' often do this by giving away paid themes with backdoors in them.

That must be it then since I've got some nulled plugins.
Reply
2015-05-14, 05:33 PM,
#6
(2015-05-14, 01:51 PM)JenniN Wrote:
(2015-05-14, 02:12 AM)DutchPride Wrote: Did you install any themes or plugins/scripts that cost money normally, but you got it for free?
'Hackers' often do this by giving away paid themes with backdoors in them.

That must be it then since I've got some nulled plugins.

Upload them to virustotal and see if they find something, But i'm almost sure that's what caused your website to get hacked.

Any questions related to CPA belong here.
Before posting, make sure you are in the correct section.

I am temporarily absent due to family circumstances.

Reply
2015-05-14, 05:37 PM,
#7
That's pretty fucked up, like DutchPride said it's probably the plugins.
Reply
2015-05-14, 08:01 PM,
#8
Well I can't be sure because they gained access to my two other domains that are hosted on the same server but with different login credentials for the FTP and they had no plugins installed.
Reply
2015-05-14, 10:07 PM,
#9
There was a 0 day exploit on wordpress recently.

This user has been banned for the following reason(s):

1- Advertising
Reply
2015-05-14, 11:31 PM,
#10
Some fucked up losers have started employing Hackers to kill competitions. Pussys. I lost 11 damn sites! 11.

Invest in a good host. NameCheap is Cheap tbh. Also, invest in some Backup plugin like Backup Buddy and put it on automated daily/weekly backup. Please don't null this or you'll be in deep shit.

Also, plugins like WordFence or Limit Login Attempts which are free are also life savers.

Be safe
Latest Thanks - View all

JenniN(2015-05-14 11:35 PM) 
Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  building email list without a website Med Fd 9 274 2017-12-10, 11:04 PM
Last Post: chumban
  Review my Landing Page / Website YoungArt 8 414 2017-12-05, 04:40 AM
Last Post: EnChanter
  which is best hosting for hacking niche website namecheap suspend my hosting vinit91 4 367 2017-11-02, 12:15 PM
Last Post: asadkhanp
  What is Website bug..? swatijain2233 1 112 2017-10-28, 11:36 PM
Last Post: ougasoft
  Looking for affiliate network for movies/tvshows website xdoctorx 3 239 2017-10-26, 07:54 PM
Last Post: detalyemo





About Us | Contact Us | CPA Elites | Advertise | Stats | Staff Team

© 2013-2017 CPA Elites Ltd
Enhanced by MyBB and WallBB
Return to top