Site hacked due to Google Maps plugin vulnerability?

Discussion regarding Joomla! 2.5 security issues.

Moderators: Bernard T, mandville, fcoulter, PhilD, General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Forum Post Assistant / FPA - If you are serious about wanting help, you will use this tool to help you post.
Locked
BMM01
Joomla! Explorer
Joomla! Explorer
Posts: 296
Joined: Mon Jun 04, 2012 10:02 am
Location: Brisbane, Qld, Australia

Site hacked due to Google Maps plugin vulnerability?

Post by BMM01 » Mon Dec 22, 2014 7:09 am

My host says that my site was hacked due to a vulnerability in the reumertech Google Maps plugin:

This is from the server logs:

* About to connect() to tracker.sceneaccess.org port 80 (#0)
* Trying 5.196.13.202... * connected
> GET / HTTP/1.1
Host: tracker.sceneaccess.org
Accept: */*
Content-type: text/xml
Content-length: 0

< HTTP/1.1 301 Moved Permanently
< Server: nginx
< Date: Fri, 19 Dec 2014 04:48:32 GMT
< Content-Type: text/html
< Content-Length: 178
< Connection: keep-alive
< Location: https://sceneaccess.eu/
<
* Connection #0 to host tracker.sceneaccess.org left intact
* Closing connection #0


The host fixed the problem by closing down access to public_html/plugins/system/plugin_googlemap3

Is there anything else I can do to stop this happening again or combat future attacks?

Thanks in advance
Brett
BMM01
Joomla Website Developer

User avatar
pe7er
Joomla! Master
Joomla! Master
Posts: 22162
Joined: Thu Aug 18, 2005 8:55 pm
Location: Nijmegen, The Netherlands
Contact:

Re: Site hacked due to Google Maps plugin vulnerability?

Post by pe7er » Mon Dec 22, 2014 8:14 am

BMM01 wrote:Is there anything else I can do to stop this happening again or combat future attacks?
Yes, keep Joomla & all 3rd party extensions up to date.

and https://docs.joomla.org/Security_Checklist
Kind Regards,
Peter Martin, Global Moderator
https://db8.nl - Joomla specialist, Nijmegen, Nederland
Co-developer of d2 Content https://data2site.com/joomla-extensions/d2-content


Locked

Return to “Security in Joomla! 2.5”