DIY Themes Forums  

Go Back   DIY Themes Forums > Thesis Theme > Troubleshooting Thesis
Hacked -- Help Hacked -- Help
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 08-16-2008, 06:05 PM
Member
  
Join Date: Jun 2008
Posts: 75
Unhappy Hacked -- Help
This is both a warning and a request for assistance.

The warning: following my posting of URLs here, I checked my sites and they were both hacked by some jerk. Here is the message:

By BeyazKurt | Albanian C0der

Bypassed ßaby

This appears instead of my Thesis theme. I did a Google search on the message and it is appearing on hundreds of sites.

The call for assistance: How do I correct this? I can't even get word out about my site being hacked. Any help ASAP will be greatly appreciated.

__________________
---
Professional Blogging News
Reply With Quote
  #2 (permalink)  
Old 08-16-2008, 10:38 PM
Senior Member
  
Join Date: Jul 2008
Location: Connersville, IN
Posts: 2,244
Send a message via ICQ to kingdomgeek Send a message via AIM to kingdomgeek Send a message via MSN to kingdomgeek Send a message via Yahoo to kingdomgeek
Default
The first thing you're going to want to do is contact your host -- something somewhere on your site is insecure and they're going to want to know about it. Likewise, they may be able to assist you in finding the vulnerable point.

Second, hope that you or your host has a recent backup. I've had my site(s) hacked a handful of times over the years, and not having backups is a pain through and through.

I'd wait until you determine the vulnerable point before re-introducing your site; if something on it was vulnerable, the hack may occur again. In the mean time, you may consider placing a static file named index.html in the root of your server explaining what has happened and that your site will be back soon.

The folks on the WordPress support board may be able to help you further, if you suspect that this has happened because WordPress or a plugin is insecure.

Google has some explanation on how to handle a hacked site on their Webmaster Central blog.
__________________
Rick Beckman, Kingdom Geek & Thesis Support Ninja (Forums Moderator)
[ Thesis Manual | Help, my posts don't show up! ]

Amazon Wishlist | My custom.css
Get Thesis! | Earn Cash as a DIY Affiliate!
Reply With Quote
  #3 (permalink)  
Old 08-17-2008, 03:46 AM
Member
  
Join Date: Apr 2008
Posts: 47
Send a message via Skype™ to gdpmumin
Default
I can't echo kingdomgeek's suggestions enough. A site I used to maintain was hacked a couple of times due to a browser exploit a few months ago. None of the research I did really described what a browser exploit was. It was my first experience with this sort of thing. I called my host (Network Solutions) and they walked me through a .htaccess fix. So far, it hasn't happened again.
Reply With Quote
  #4 (permalink)  
Old 08-17-2008, 05:20 AM
Member
  
Join Date: Jul 2008
Location: Pembroke Pines, FL.
Posts: 58
Default
It looks like a sql injection hack to me, which I've had some experience enduring Latest info on SQL injection attack. | rumblepup. I don't know if there is some vulnerability not seem in wordpress before, or if the databases for these sites where vulnerable.

Looks like a lot of Joomla sites where affected as well.
__________________
Patio Umbrellas and make sure to check me out at rumblepup
Reply With Quote
Reply

« Previous Thread | Next Thread »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT. The time now is 06:42 PM.

Contact Us - DIY Themes - Archive - Top

Powered by vBulletin® Version 3.6.8
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.1.0