hacked
- Started
- Last post
- 25 Responses
- ukit0
"Doubt it's possible to attack a site via a .html page because the server is just sending a file there is no processing going on."
Well seemingly it is possible, I just experienced it:) I deleted their shit but what it looked like was that they had added some code to the index.html page that forwarded to the index.php and then injected some code.
The main thing is that these are FTP-based exploits, so once they get in there they can obvious change anything they like. This particular program was seemingly programmed to systematically go through the server and look for either index.php or barring that, index.html files. The reason I know this is cause it also "injected" a totally useless index.html that was sitting in a random folder somewhere.
- well yeah they compromised your machine, you got hacked your host didn'tPIZZA
- PIZZA0
"Holy shit, I didn't realise FileZilla kept all the server details in unencrypted xml form"
Doesn't really matter, if it does turn out you had that trojan then your entire system is fucked anyway and nothing is safe.
"The site sends the visitor an infected PDF that is opened by the visitor's browser or Acrobat Reader"
/\
Moral of the story right here, don't use Acrobat Reader and certainly don't use their browser plugin. Adobes security track record is utterly pathetic.
- detritus0
Sure, but there's a small window where you could fix your system before using FZ (or whatever).
I got a Trojan or something on my XP laptop last year (after accessing a dodgy DL site to get a font someone here linked me to :\ ). I realised immediately, so locked down everything and fixed it before it did any damage. Had that machine had my FTP details on, I might well have suffered the same kind of attack as seen here.
- vaxorcist0
search your hard drive for any file including "pantscow.ru"
It is a common javascript injection attack.....