|
Hacked
|
| (Friday, 26 September 2008) Written by iWannaPlay |
| Alright, so, for the first time ever, somebody actually managed to hack iWanna Play. Thank god for me that they didn't want to destroy the site-- Only prove that they can hack an outdated version of Joomla that is missing it's security updates. Lesson learned on my end. This is the message that got displayed. I erased their Emails out of respect. In celebration of me getting hacked, here is a checklist on what to do if somebody breaks through your sites security. Regain access. If they changed your Cpanel information, contact your host, getting your Username and Password changed. Make sure you still have FTP Access. If not, fix it in Cpanel, and delete your old FTP Accounts. Display a temporary page on your website explaining the situation. Give times on when it will be back and all that. Check your server logs. If they went around MySQL, make sure they didn't delete or change anything. Make sure none of your files have been deleted or changed. Look out for bad iFrames and stuff. (This is the reason Backups exist.) Be sure nothing is changed in .htaccess. If so, change it back. (Backups help here.) Begin site recovery. Fix any changed files, change your MySQL database names, usernames, and passwords. Once your site is back up, be sure your users change their passwords and usernames. If you encrypted the passwords, you should be safe. If not, then you are in trouble. Of course, if you have raw credit card information in your database, and stuff like that, you can be liable for the lost information. That is the reason that you need to be sure your website encrpts information being sent into a database, and clean all of the data sent from the user to you. |
| [ Back ] |
