HI, Yesterday my site was "defaced" by a hacker. The front page was completely replaced with the hackers page. I'm using Amazon's EC2, and in my haste to get the site back up, I killed the bad server and relaunched a new one. This resulted in me losing the hacked server so I'm unable to investigate.
I have SSH enabled only for my IP address. Afaik this recent security update would prevent someone from doing SQL injection but because the entire site was defaced, I don't think this is a SQL related hack.
I will upgrade immediately, but just wondering if you had any thoughts on how it might have happened?
Thanks
--
Like Us on FaceBook https://www.facebook.com/CakePHP
Find us on Twitter http://twitter.com/CakePHP
---
You received this message because you are subscribed to the Google Groups "CakePHP" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cake-php+unsubscribe@googlegroups.com.
To post to this group, send email to cake-php@googlegroups.com.
Visit this group at http://groups.google.com/group/cake-php?hl=en.
For more options, visit https://groups.google.com/groups/opt_out.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment