Internet Gone Hack-Crazy

Some new hacks are running rampant on the web, and they are making my life very difficult along with all the other web site owners that have been affected (or infected). I just don’t understand the allure of hacking servers and sites.

Hack #1: Javascript injection

This one seems to happen more if you are using a CMS (like Joomla), Blogging Software (like WordPress), or an older version of php (version4). In this hack, the hackers inject javascript on all index pages that looks like a yahoo counter. What this code is actually doing is interacting with a generated random letter folder that will look something like this: domain.com/xjklu . This folder will have mixtures of httpd ownership and root ownership. If you do not have shell access, you will need to contact your hosting provider to have the ownership changed back to your username. If you have any other questions about this, leave me a comment.

Hack #2: Htaccess hack

In this hack, the hackers are creating a .htaccess file that is causing your site to redirect to a fake Anti-virus site (AV2009). This .htaccess file will be 414 bytes in size. This all originated when some of google’s servers were hacked with this same htaccess hack. Then when people clicked on google search links, they were redirected to a fake anti-virus download link.

You will need to remove this file then go to this site for the steps to remove this virus from your pc: http://www.xp-vista.com/spyware-removal/antivirus2009-antivirus-2009-removal-instructions . After you have followed those steps, change your ftp password to ensure that those hackers no longer have access to your ftp password. Again, if you have any questions about this, leave a comment.

Leave a Reply

Your email address will not be published. Required fields are marked *