My site being hacked

Discussion regarding Joomla! 1.5 security issues.
Joomla! Vulnerable Extensions: http://feeds.joomla.org/JoomlaSecurityV ... Extensions

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
Locked
fedbear
Joomla! Apprentice
Joomla! Apprentice
Posts: 7
Joined: Fri Jan 02, 2009 5:48 am

My site being hacked

Post by fedbear » Fri Nov 04, 2016 4:48 am

Hi.

Can anyone help me? My site has been hacked recently - a large number of links were written on my homepage below:

http://redacted

I am still using Joomla 1.5.23. This is a social network website which now has only two users. I am still paying for it to be active, but haven't spent lots of time to maintain it.

I tried to look for any abnormal files in cPanel and Joomla directories, but couldn't find any. Does anyone have any hint where I should look for those links in order to manually remove them.

Thank you very much.

Feddie
Last edited by mandville on Sat Nov 05, 2016 12:15 am, edited 1 time in total.
Reason: redacted at as per OP request

User avatar
sozzled
Joomla! Champion
Joomla! Champion
Posts: 5837
Joined: Sun Jul 05, 2009 3:30 am
Location: Canberra, Australia
Contact:

Re: My site being hacked

Post by sozzled » Fri Nov 04, 2016 5:37 am

On the one hand, I'm sorry to hear that your Joomla! website has been hacked. On the other hand I'm not surprised.

J! 1.5.x has been vulnerable to attack for many years. The same thing is true for any website built before J! 3.6.4.

Migrating a J! 1.5 website is not difficult but, if it's too difficult for people, there are many services available to assist you (although, for the most part, none of those services are free of cost).

As always, we pay the price (one way or another). If you don't maintain your site regularly, if you don't insure your site in the event of a catastophe, if you don't keep the site up-to-date, then you pay the penalty sooner or later when things go sour.

I can't advise you more than to refer you to the many topics that exist for people whose sites have been hacked to death and to the realisation that, at the end of the day, you'll have to invest more of your time and (possibly) more of your money to equip yourself with the eventuality that your existing site is probably doomed (in its present form). Sorry.
https://www.kuneze.com/blog
Former member of Kunena project team
If you think I’m wrong then say “I think you're wrong.” If you say “You’re wrong!”, how do you know?

webhostuk
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 193
Joined: Thu Aug 27, 2009 3:05 am
Location: UK
Contact:

Re: My site being hacked

Post by webhostuk » Fri Nov 04, 2016 9:52 am

Normally this is done by mysql injection or by uploading file using user permission and running things via browser, even though you find those files this can happen again and again. I would rather recommend to get your Joomla updated to latest version and then apply all the security steps recommended to secure joomla website.
https://www.webhost.uk.net/joomla-hosting.html | Best UK Joomla Hosting!
http://www.webhost.US.Com | Best US Joomla Hosting
One click auto installer for Joomla

fedbear
Joomla! Apprentice
Joomla! Apprentice
Posts: 7
Joined: Fri Jan 02, 2009 5:48 am

Re: My site being hacked

Post by fedbear » Fri Nov 04, 2016 10:03 am

thanks.

fedbear
Joomla! Apprentice
Joomla! Apprentice
Posts: 7
Joined: Fri Jan 02, 2009 5:48 am

Re: My site being hacked

Post by fedbear » Fri Nov 04, 2016 10:17 pm

I have solved it myself. thanks.


Locked

Return to “Security in Joomla! 1.5”