The one in my link
It looks like they just replaced the index file - but left the original in place
the messagethe left can be seen at:http://www.wideopenspaces.co.uk/indexhack.html
How can I stop this happening?
The one in my link
It looks like they just replaced the index file - but left the original in place
the messagethe left can be seen at:http://www.wideopenspaces.co.uk/indexhack.html
How can I stop this happening?
inform your web-hosting provider about it!
do you use any scripts on your page? (e.g. forum script etc.) - they can be a problem... if you are - be sure to use the most up to date version of them...
and...
it wasn't me
Most likely cause if they replaced your index file is poor choice of passwords. Or they may have first hacked your computer (where your passwords are most likely stored) and then used them to access your site.
As tomek says, inform your host. They may have hacked in at a deeper level and then worked up to where your site is stored.
Check your ftp / web / error logs and see if you can find out what happened.
If you are using CPANEL look at your ftp access logs, get their IP address and contact FBI (I doubt british police will do anything).
Thanks for the advice guys...
Done this, waithing for a reply...inform your web-hosting provider about it!
I thought the password was secure, but have changed it anywayMost likely cause if they replaced your index file is poor choice of passwords. Or they may have first hacked your computer (where your passwords are most likely stored) and then used them to access your site.
just going through the access logs now
Would the FBI be interested?
People who hack often hack alot and know other hackers. If you have an IP address of a hacker the FBI could use it to track down the hacker and other hackers.
I cant get onto the ftp logs, looks like they may have deleted them.
Still waiting for the host to get back to me , but at least the site is back up.
Message from host - published on their user forums.....
We have a hacker on our server and many other servers. We think it is a CPanel glitch. Our backup harddrive may not even work in this situation. The hacker "Status-x" has hacked over 1000 websites and will mostlikly get to you. I have back many sites up but back your own while it is still ok. The hacker has been only leaving an index.html file on your main page. But back your site up just incase anything else happens.
Bookmarks