Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Hacked?


globalx

Recommended Posts

Posted

Hey everyone,

I had an index.html page that loads when someone goes to my domain. But I just went there and it didn't load this time, instead it tried to redirect me somewhere else and said a virus was found. It appears as if someone hacked it perhaps? I removed the index.html file and reloaded it with a backup and it works fine. Could someone please help me work out how this happened and also help me secure all my catalog pages and basically just tell me how I can avoid being hacked or anything in the future.

 

Thank You

Posted
Hey everyone,

I had an index.html page that loads when someone goes to my domain. But I just went there and it didn't load this time, instead it tried to redirect me somewhere else and said a virus was found. It appears as if someone hacked it perhaps? I removed the index.html file and reloaded it with a backup and it works fine. Could someone please help me work out how this happened and also help me secure all my catalog pages and basically just tell me how I can avoid being hacked or anything in the future.

 

Thank You

Anyone?

Posted

There are so many possibilities:

 

1. HTML pages are pretty easy to inject stuff into if the server is not secure.

 

2. If your host is using the cPanel web hosting control panel make sure that they have patched it against the known exploit of cPanel which is doing the rounds and taking server after server down.

 

3. Older versions of osCommerce have an open redirect in redirect.php which is not validated. If you are not using the latest updated version of osCommerce then you need to update a.s.a.p

 

Vger

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...