Infusion hacked /tmp folder
-
-
- Jeff Swope
- Sr. Rocketeer
- Posts: 126
- Thanks: 0
-
This past weekend I started getting a cPanel password reset confirmation codes in my email. I didn't think anything about since I have a very strong password for my email. Sunday - the entire server was compromised and all of the sites on the entire site were compromised.
All of the sites were "defaced" in which all they did was change the index.php page of the site, in most cases saving the original as "index.php_original". They even left an email address to contact them, so I did so. They said patch your Joomla.
www.cyberdos.org is the website that hacked it. I found the URL that was posted on their forum and that i site is a 1.5.14 Infusion site. So how as this hacked? The specific URL posted was
rsxpowersports.com/tmp/ and rsxpowersports.com/tmp/tutors.txt
so i'm trying to figure out how to patch this!! Anyone have any ideas?!
-
-
-
- Ben Lee
- Elite Rocketeer
- Posts: 4193
- Thanks: 42
- Check any extensions you have installed. Also, Joomla has some flex room for installing on a server that is not necessarily secure. "patch joomla" might mean that you are running Joomla but not necessarily totally securely.
-
Time to create page: 0.056 seconds