This past weekend my host (along with a number of other hosts) was hacked by somehting called "This Site Hacked By Akincilar Tim For Turkey". This hacker was able to take every files starting with index, be it html or php, and replace it with the following text:
Abd*İsrael*Pkk is the world's most bloody and brutal terrorism group. They killed approximately 35.000 innocent people without any cruel till now. All the nations and states must know which are supporting these bloody and brutal terrorism groups, supporting terrorism will brings suffer and deathness. We are always be a side of peace. but we have always some words to say these terrorists "which" wants to seperate us and kill innocent people.
Be God's Curse On You !
We Will be Your Curse on Cyber World !
This Site Hacked By Akincilar Tim For Turkey
Abd*İsrail*Pkk dünyanın en kanlı, vahşi terör örgütlerinden biridir. Bugüne kadar 35.000 masum insanı gözünü kırpmadan katletti.bu kanlı terör örgütüne destek olan tüm ülkeler bilmelidirler ki terörün yandaşı olmak onlara da acı ve ölümden başka birşey getirmeyecektir. Bizler daima barışın yanındayız. Ancak bizleri parçalamaya kalkanlara, masum insanları öldürenlere ve buna demokrasi, insan hakları diyenlere de bir çift lafımız her zaman vardır.
Allah'ın Laneti Üzerinize Olsun !
Sanal Alemdeki Lanetinizde Artık Biziz !
I guess I didn't realize how many index files there are on my site/ As my latest backup was a week old, I have been busy replacing all the index files with the original ones. My question is would something like this hacking attack be more preventable if all the index files were read only to everyone? I believe they may have been that way to start with but I am not sure of it.
I know I am having to move everything to a new host as this attack succeeded in putting my host out of business, along with a number of other hosts.
All your files should be set to rw-r--r-- (644) -- only read-write for the owner/ftp admin, and folders rwxr-xr-x (755)-- only writeable for the owner/ftp admin. Most Apache servers and ftp clients default to these settings, but there are always exceptions. Doublecheck those permissions. If you have the capability, you should schedule a cron job to backup your files every week or so. Consult with your host for advice.
In my case, the host, Qubefactor.com, was completely hacked to the point that he is quitting the business. I hear this happened to others also. Found out he hacked every file starting with index, home and main, no matter what type it was. I had a backup so I was okay and I have now relocated my site.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum