Jump to content

Step57

SteveIsCool

By SteveIsCool
in Security Discussions

 Share

Recommended Posts

SteveIsCool Newbie

SteveIsCool

Posted
Posted

Recently I had some of my sites "hacked" but was mainly caused by my own doing. I had some php files that where 777 that somehow got modified. I don't know all of the details but a small 1x1 pixel is added in an iframe that redirects to another site and attempts to download information.

 

Below is information I think I found about the exploit from the site that it directs too. Supposedly it's a cpanel backup exploit.

 

LINK REMOVED - No reason to post this type of infomation - TCH-Bruce

 

This exploit affected all of my sites that had php files that were 777. I believe it mostly affects php files but I don't remember if it affected html files.

 

Lesson Learned - No files should have Write permission unless absolutely necessary.

TCH-Bruce Grand Master

TCH-Bruce

Posted
Posted

Welcome to the fourns SteveIsCool

 

It is wise to never set any files or folders to have write permissions for everyone unless absolutely necessary and then do so knowing there could be consequences.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...