Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

website hacked and attempted hack on hosting


SVTour98

Recommended Posts

Hey guys hoping you have some insight here. Had my oscommerce site up and running for about a month. Here is a list of what I had on it:

 

osCommerce 2.2 rc1

UPS XML rates v. 1.2.8.1

Google Checkout v1.4 beta 1

Site overlay from templatehunts.com (link to template)

 

Anyhow this morning I got a notice there was a security breach through my account and the hosting company had to freeze my account because of it. Has anyone with any of these installations experienced something similar? Seems as though there is a hole in the scripting somewhere that allows someone access to the internals of the hosting where they can modify and basically take over the account and hack the servers. Trying to narrow down what the problem is and/or which one of those installations is the problem. I'm leaning towards the site overlay but I can't be certain and the hosting company can't be certain either at this point. Looks like the hacker tried changing and overtaking the Apache servers as well which is why they froze my account.

 

Thanks in advance.

Link to comment
Share on other sites

First ask the hosting company to detail where the breach is comming from within your scripts. If the breach is in fact comming from within the osCommerce scripts they should have a log of what it is so it can be fixed.

 

If they can't supply you with any details other than they 'think' it's your scripts find a new host.

Installed Contributions: CCGV, Close Popup, Dynamic Meta Tags, Easy Populate, Froogle Data Feeder, Google Position, Infobox Header Entire Row, Live Support for OSC, PayPal Seal with CC images, Report_m Sales, Shop by Price Revised, SQL Updater, Who's Online Enhancement, Footer, GNA EP Assistant and still going.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...