Site Hacked!

Discussion regarding Joomla! 1.5 security issues.
Joomla! Vulnerable Extensions: http://feeds.joomla.org/JoomlaSecurityV ... Extensions

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
Locked
toastyrat
Joomla! Apprentice
Joomla! Apprentice
Posts: 48
Joined: Wed Dec 05, 2007 6:28 pm

Site Hacked!

Post by toastyrat » Mon Feb 11, 2008 11:46 am

My site got hacked by some o's called [RussW: Removed, irrelevant to discussion or resolution] group... How? and what can i do to stop this from happening, very irritating.

User avatar
Robin
Joomla! Master
Joomla! Master
Posts: 15753
Joined: Thu Aug 18, 2005 10:41 am

Re: Site Hacked!

Post by Robin » Mon Feb 11, 2008 12:47 pm

Hi,

Could you post the site version so I can move this thread to an appropriate board? Thanks.

toastyrat
Joomla! Apprentice
Joomla! Apprentice
Posts: 48
Joined: Wed Dec 05, 2007 6:28 pm

Re: Site Hacked!

Post by toastyrat » Wed Feb 13, 2008 11:24 am

RobInk wrote:Hi,

Could you post the site version so I can move this thread to an appropriate board? Thanks.
Joomla 1.5

toastyrat
Joomla! Apprentice
Joomla! Apprentice
Posts: 48
Joined: Wed Dec 05, 2007 6:28 pm

Re: Site Hacked!

Post by toastyrat » Wed Feb 13, 2008 11:28 am

I don't really know too much about hacking and therefore don't know how this happened. All he did was delete my index.php pages and other pages on root folder and inserted his own index.html page. All the folders were still there and working fine. He didn't effect the database either it seems.

hungryOrb
Joomla! Explorer
Joomla! Explorer
Posts: 442
Joined: Fri Oct 12, 2007 9:56 am

Re: Site Hacked!

Post by hungryOrb » Wed Feb 13, 2008 1:10 pm

toastyrat wrote:I don't really know too much about hacking and therefore don't know how this happened. All he did was delete my index.php pages and other pages on root folder and inserted his own index.html page. All the folders were still there and working fine. He didn't effect the database either it seems.
Was it the most recent version? 1.5.1?

toastyrat
Joomla! Apprentice
Joomla! Apprentice
Posts: 48
Joined: Wed Dec 05, 2007 6:28 pm

Re: Site Hacked!

Post by toastyrat » Wed Feb 13, 2008 1:28 pm

sorry, more specific: 1.5.0

User avatar
RussW
Joomla! Exemplar
Joomla! Exemplar
Posts: 9352
Joined: Sun Oct 22, 2006 4:42 am
Location: Sunshine Coast, Queensland, Australia
Contact:

Re: Site Hacked!

Post by RussW » Wed Feb 13, 2008 9:11 pm

Please review the following FAQ's ASAP, you will find a wealth of information related to your issues.

Security & Performance FAQ

It is not recommended to leave your sites publicly available and exploited, as it will only serve to promote the offenders ego and kudos and potentially expose the rest of the server to attack.

The above mentioned FAQ will provide with more than enough information to assist you in further securing your sites.

Particular entries of note and to pay attention to, are;

Joomla! Administrator's Security Checklist

Help! My site's been compromised. Now what?

Vulnerable Extension List


Other useful posts and tools;

Joomla! Tools Suite
How can I check my Joomla! installation's overall security and health?

What does Joomla! have to do with file permissions?

How do I find exploits using the *NIX shell?

Potential Exploit Checking Script

Auto-Change, Admin Password Script

[hr]
In most cases, your hosts will be more than willing to assist, a compromised site is also a risk to the rest of the server, thus it is in their interest to help you resolve these issues in the most expediant manner.
Joomla! on the fabulous Sunshine Coast...
hotmango, web & print http://www.hotmango.me/
The Styleguyz https://www.thestyleguyz.com/


Locked

Return to “Security in Joomla! 1.5”