nepalbcn Posted July 25, 2006 Share Posted July 25, 2006 Hi, my site has been hacked, they left a cra.php file in my root directory that says "hacked by crackers_child". Great. I call my hosting provider and they say it's because I'm using OSC and that they can't do nothing. Could that be true? Can someone add a file in my root through OSC? Link to comment Share on other sites More sharing options...
nepalbcn Posted July 25, 2006 Author Share Posted July 25, 2006 Hi, my site has been hacked, they left a cra.php file in my root directory that says "hacked by crackers_child". Great. I call my hosting provider and they say it's because I'm using OSC and that they can't do nothing. Could that be true? Can someone add a file in my root through OSC? Now, when I try to buy something I just won't jump to the login. When I put the mouse over "checkout" the left bottom of the browser says that I'm going to www.mysite.comcheckoutshipping.php, it should say www.mysite.com/catalog/checkout_shipping.php, I'm trying to fix it. Link to comment Share on other sites More sharing options...
mjr Posted July 25, 2006 Share Posted July 25, 2006 Depending on whether you've kept up-to-date with security alerts, which add-ons you've used, your installation settings and some other stuff, it *could* be true, but it sounds like your web host is rubbish and trying to pass the buck IMO. See if you can figure out when the attack happened (beware: file times may be forged) and match it against your web access logs. Always keep an off-server backup of your site source code and database: until you download what's currently there and compare it, you can't trust the on-server copy your site. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.