Search results

I have a feeling that some of the pages were created with a CMS - which means they were dynamically created via a DB entry (after a login/pass type of thing) Lots of CMS do this from a back end form type of entry point. Otherwise it has to be a password compromise in order to change the...

What security measures are in place on the servers to help with this type of an attack? Do we have a firewall? URLScan? Windows Defender? Thanks! Deborah

Is there a way to test a form on our clients website for the capability of an asp/perl/php/asp.net injection? Can I test for that? Two tickets put in with as much information as I have right now. I am a PHP/MySQL Unix geek so I am really not a windows smart sysadmin. Sorry for the...

Thanks again Stephen. We know the files that were modified and we can see some of the times stamps on them. Will that help find what happened? I will open a ticket but I am not sure where to start. I will also take a look at the threads here. Wish me luck! Deborah

Thanks for your reply Stephen. Will Jodo be able to help us figure out what happened? We are willing to pay for an audit as we can't see further back than one week from the logs and we know that there are several domains that have been compromised as far back as early April of this year. We...

Hi Everyone, We have several domains that have been hacked on our reseller account. When we have had any strange events on any of our other servers we have hired a security company to come in and crawl around to see if we are patched and ok. With a reseller account we have no way of doing...