My Website got Hacked Now What? [modified]
-
So some guy from Russia injected some javascript into mysite. What can we do now. Any free website Scanning software. I have deleted and uploaded the sites already. It is the riotassitance.ru domain located in France. Any suggestions?
Tapas Shome System Software Engineer Keen Computer Solutions 1408 Erin Street Winnipeg, Manitoba Canada R3E 2S8 http://www.keencomputer.com www.ias-research.com/blog
modified on Saturday, August 14, 2010 3:36 PM
-
So some guy from Russia injected some javascript into mysite. What can we do now. Any free website Scanning software. I have deleted and uploaded the sites already. It is the riotassitance.ru domain located in France. Any suggestions?
Tapas Shome System Software Engineer Keen Computer Solutions 1408 Erin Street Winnipeg, Manitoba Canada R3E 2S8 http://www.keencomputer.com www.ias-research.com/blog
modified on Saturday, August 14, 2010 3:36 PM
I am by no means an expert in this sort of thing but it occurs to me that unless you have modified the site to remove the vulnerability used by 'some guy from Russia' it is very likely that it will be hacked again.
Henry Minute Do not read medical books! You could die of a misprint. - Mark Twain Girl: (staring) "Why do you need an icy cucumber?" “I want to report a fraud. The government is lying to us all.”
-
So some guy from Russia injected some javascript into mysite. What can we do now. Any free website Scanning software. I have deleted and uploaded the sites already. It is the riotassitance.ru domain located in France. Any suggestions?
Tapas Shome System Software Engineer Keen Computer Solutions 1408 Erin Street Winnipeg, Manitoba Canada R3E 2S8 http://www.keencomputer.com www.ias-research.com/blog
modified on Saturday, August 14, 2010 3:36 PM
Do you use ftp to get files onto your website? Because if so it's also a possibility that there is something on your machine somewhere that has yielded the user name and password to this Russian fellow, it's something worth checking at least. I assume you've changed your passwords and whatnot as well, because if you haven't then you definitely should.
My current favourite word: Harsh!
-SK Genius
-
So some guy from Russia injected some javascript into mysite. What can we do now. Any free website Scanning software. I have deleted and uploaded the sites already. It is the riotassitance.ru domain located in France. Any suggestions?
Tapas Shome System Software Engineer Keen Computer Solutions 1408 Erin Street Winnipeg, Manitoba Canada R3E 2S8 http://www.keencomputer.com www.ias-research.com/blog
modified on Saturday, August 14, 2010 3:36 PM
Look at your input fields on your site and check for XSS errors and then just filter out < and > and replace them with the html equivalent and that should be pretty good for stopping a XSS error.