SMF Support > SMF 2.0.x Support

beta version hacked today by turkish hacker group

<< < (2/2)

donald20:

--- Quote from: SlammedDime on June 26, 2008, 03:55:22 PM ---They could have got in through Joomla too, just to keep that in mind.

Can you PM me FTP access to your site so I can take a look at whats going on?

--- End quote ---

you got a pm

thank you

donald20:

--- Quote from: RedOne on June 26, 2008, 03:50:53 PM ---I doubt it was the template. Ask you web host to provide information to you. Hopefully you will have some server logs that will resolve any questions.

Also, file a security report once you have all the information

Security Report

There are no known issues with your release of SMF security wise that I am aware of.


--- End quote ---

yep good idea, i was sending a request about the server log, after reveiving some news about i will use the security report form to inform you. thank 4 ur support.

regards donald

xyxis_fahim:
I suspect host was hacked. I faced the same thing last year. But found out host it self was hacked not SMF.

Hope this is nothing serious on your side.

SlammedDime:
Looks like they got file level access to your account on your server and changed all of the index.template.php files in every theme to reflect what you saw.

You have a lot of scripts on your server, any one of which that could have been comprimised to allow this.  SMF has not had, at least in quite some time, any vulnerability that would allow such access.  Any vulnerability as of recent were mostly of XSS type, which wouldn't cause this.

Whoever attacked your site either got access from another account on the server, which is unlikely because the files were owned by your account, or through another script on your account, either through a Joomla component that wasn't secure or another script.

I've uploaded a fresh copy of the default theme from 2.0 beta 3.1, but you really must secure your site or this will happen again.

You'll need to visit your site with the following link and change the default overall theme to SMF's core default until you can get things sorted out:
http://www.sawasdee.at/smf/index.php?theme=1

donald20:
well,  thank you a lot what you have done and for your suggestion i will look what else i can do to stop this crap...

best regards

donald

Navigation

[0] Message Index

[*] Previous page

Go to full version