04
Oct
Website hacked
Hi everybody,
Friday evening I found that around 6 PM all the web applications of the pdfsam web space had been hacked. Some malicious code was injected into index pages and few others. I restored backup copies and updated to the last version of WordPress, MediaWiki and phpBB so, hopefully, everything should be clean now, I however strongly recommend the users to change their forum password.
22 Responses to “Website hacked”
Are you storing passwords without encryption? You shouldn’t.
Actually it’s not me but phpBB and password are stored encrypted.
Do the windows executables that were on the web-site at the time have the correct checksum?
or have they been tampered with?
I am sure the last thing you want is infected copies of your applications circulating on the web (especially if they originated from your web site).
If files have been tampered with they should have their signures submited for inclusion in malicious software databases.
I scanned every file with two antivirus and everything seems fine.
I had the same problem few weeks ago. IFrames have appeared in all index pages of my website.
The problem came from my own pc, I had kind of a key-logger on my laptop, which got my ftp login and password. I have sanitized my laptop and told my website host to change my ftp password. Since then I have no more problem.
What if the hacker rebuilt the executables with code to delete your home directory? (and updates MD5SUM) Scanning with two antivirus won’t pick that up.
I’m very disappointed to hear that, fortunately backups exist! Keep on doing your job, I really appreciate PDFSam.
Bye
phpBB is the worst kind of forum because every lamer can hack it (there are many exploits on it). I suggest you to change your forum to something more secure. For example: I use SMF (it’s more secure then phpBB) and I’m much glad from it.
I have just download this app and found 3 trojan horses! What is with this? Why would you offer a program that has viruses..if your site has been hacked then surely you should have measures in place to sort it. remove the infected files and upload new ones.
Which version? I just checked the latest release with 3 antivirus programs and also the MD5 sum is correct so what is the file you are talking about?
Hi!
I just found out about your project on two old magazines: Linux Magazine January 2009 and Linux Format (don’t remember which issue).
I think that this project is very useful for the law firm I work for, but, after having read that you’ve been hacked, I’m a bit worried about even sugesting this software to them.
First of all, I want to congratulate you for beeing open about this and not trying to cover this issue, like others do.
Then, to be sure that your software is secure, could you please tell me what have you done to make sure that the source code and the executable files haven’t been tampered with?
Have you restored the source, the binaries and the content of the site from backups? Did you check the mda5sum’s (you should be using sha256, which is much more secure than mda5sum)? Are you completely sure that the backups pre-date the hacking?
I’m also worried about one of the previous posts, stating that someone found 3 trojans on it…
Are you still keeping all your web site software up-to-date?
Thank you in advance for your time. I think you have a great project here, but I would like to see these questions answered before even sugesting it to my employers. It wouldn’t be a good thing to sugest the use of infected or hacked software in the company…
Keep up the good job.
Really, you think what happened here is worse than what Adobe is releasing? This is a free program that works great, and has saved my butt a couple of times. Sites get hacked, programs get exploited. If Adobe and Google can’t get it right what hope does one guy have? Marco Silval, do you grill all of your software providers like that? Don’t think so, because if you do you wouldn’t be using Microsoft or Adobe.
I’m glad I found this site, it’s full of useful information.
Uih wie immer ein informativer Beitrag. Wenn doch nur alle Blogs so qualtitativ hochwertig wären. Ich habe auch einen Blog über kleinere Simulationen, könntest Du mir dazu auch Feedback geben? Meine Simulation. Vielen Dank im Voraus! MFG
First of all thanks a lot for the great software…keep on.
backup is the most imported thing to do…good luck with restoring all the users/data…
Ram.
It sounds like you’re creating problems yourself by attempting to solve this issue instead of shopping at why their can be a problem in the first place. thanks !! really useful send!
ohhh great info
Great article, will definitly check out this website for more! Keep it up. regards.
Keep functioning ,remarkable job!
You made some good points there. I did a search on the subject matter and found most guys will agree with your blog.
Sorry to hear that man. Happened to me on an occasion, not fun at all.
-Tony
please keep your downloads virus free. Why don’t you add a Virus Total report.
Thanks you
Leave a Reply