Welcome, Guest: Register On Nairaland / LOGIN! / Trending / Recent / NewStats: 3,150,619 members, 7,809,273 topics. Date: Friday, 26 April 2024 at 07:07 AM |
Nairaland Forum / Science/Technology / Programming / My Site Was Hacked By One Of Those Pakistani Cyber Army Guys. What Do I Do? (1855 Views)
Cyber Security Experts - Call For Members / What Is The Meaning Of Hacked By A.l.t On Www.funmiquadrionline.com? / Mark Zuckerberg's Facebook Account Hacked By Palestinian (picture) (2) (3) (4)
My Site Was Hacked By One Of Those Pakistani Cyber Army Guys. What Do I Do? by internetpo(m): 12:13pm On Aug 15, 2012 |
Hi! My site was hacked by one of those middle eastern cyber groups, the pakistani cyber army to be precise. This is sort of the 3rd time they are doing this. I think the hack came from a php/sql injection. I have tried and cleaned by files the last two times they attacked and i am surprised the attack is coming again AND THEY SEEM TO get into my WHM and change all my clients site/details. I have a WHMCS installation there. Could it be that they are entering through my WHMCS? Will getting an SSL certificate stop these attacks? Where and where do I look into my files to locate and clean the injection? Please your help will be appreciated. |
Re: My Site Was Hacked By One Of Those Pakistani Cyber Army Guys. What Do I Do? by Nobody: 12:47pm On Aug 15, 2012 |
internetpo: Hi!SSL certs only secures data transmission from your user to you. it will not help. locate the vulnerable part or resign. look into the form submissions, url parameters passed in and make sure they are escaped. never connect to your database as root from your application and never give the database user the file privilege. for most operations, SELECT,UPDATE,DELETE, INSERT will do. check that you are not including any file dynamically from the url e.g in php include ($_GET['returnURL']); well be sure you have lost some clients and potential clients on here by posting your domain. 1 Like |
Re: My Site Was Hacked By One Of Those Pakistani Cyber Army Guys. What Do I Do? by internetpo(m): 9:55am On Aug 22, 2012 |
Thanx webdezzi. Looking into all you have said. I have now made security a top most agenda |
Re: My Site Was Hacked By One Of Those Pakistani Cyber Army Guys. What Do I Do? by Slyr0x: 8:33pm On Aug 22, 2012 |
You've got mail. . |
Re: My Site Was Hacked By One Of Those Pakistani Cyber Army Guys. What Do I Do? by eazyd(m): 2:06pm On Aug 24, 2012 |
internetpo: Hi! Rather than accessing the $_GET and $_POST superglobals directly, you can make use of PHP functions like filter_input() and filter_input_array(). for example <?php $my_string = filter_input(INPUT_GET, ‘my_string’, FILTER_SANITIZE_STRING); ?> The code above is roughly the equivalent of retrieving $_GET[‘my_string’] and then running it through some sort of filter that strips HTML and other undesirable characters. This represents data sanitization, one of the two things that the filtering system can do. |
Re: My Site Was Hacked By One Of Those Pakistani Cyber Army Guys. What Do I Do? by Everest9(m): 11:42am On Aug 26, 2012 |
bro you need to be very careful always monitor your members activities in your site for example i banned some members in my site because of Unidentifiable Activities and they are always from Parkistan and Iran though i later received attack from them but guess what, i got backup of everything including my members and mostly my web hosters is doing marveliously well for me so i am not afraid and my eyes is always on my site 24hours a day and if i notice any attack i wil rename and redirect members telling them to check back in few minutes then i will get the problem fixed. If you need help visit my little home and contact O.C.E THANKS |
Re: My Site Was Hacked By One Of Those Pakistani Cyber Army Guys. What Do I Do? by 53cur3m0d3(m): 11:24am On Aug 30, 2012 |
Slyr0x: You've got mail. .Slyr0x is the man for U bro,get things done before they take U down for gud... |
(1) (Reply)
Imagine What This Lady Did To My App On Playstore / AWS Certified Solutions Architect - Associate / Please Help Differentiate Between Computer Science And Computer Engineering
(Go Up)
Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health religion celebs tv-movies music-radio literature webmasters programming techmarket Links: (1) (2) (3) (4) (5) (6) (7) (8) (9) (10) Nairaland - Copyright © 2005 - 2024 Oluwaseun Osewa. All rights reserved. See How To Advertise. 16 |