on-rev hacked

Andre Garzia andre at andregarzia.com
Mon Jun 4 19:24:34 EDT 2012


Do you have a potential idea of how the hacking occurred? Were you using
any popular PHP FOSS there? I've seen hackings such as this happen thru
Wordpress exploitation.

Any idea how it happened?


On Mon, Jun 4, 2012 at 7:57 PM, Mark Wieder <mwieder at ahsoftware.net> wrote:

> It was pointed out to me over the weekend (thanks Mark!) that my on-rev
> website
> had been hit by a bot that did two things: replaced my .htaccess file with
> an
> empty (zero-length) one, and inserted a javascript pointing to "
> thesalivan.com"
> right after the <body> tag in all the .html and .htm files.
> Simple enough to fix up, but annoying and consumed time I would rather have
> spent on other pressing projects.
> So this is just an alert to those who have sites hosted on on-rev, given
> the
> recent (or no-so-recent) security breach there, you might want to check
> your web
> pages and ensure that nothing's out of place. I hadn't noticed any
> discrepancy,
> apparently because one or more of my Firefox blockers was preventing the
> script
> from loading.
> --
>  Mark Wieder
>  mwieder at ahsoftware.net
> _______________________________________________
> use-livecode mailing list
> use-livecode at lists.runrev.com
> Please visit this url to subscribe, unsubscribe and manage your
> subscription preferences:
> http://lists.runrev.com/mailman/listinfo/use-livecode

http://www.andregarzia.com -- All We Do Is Code.
http://fon.nu -- minimalist url shortening service.

More information about the Use-livecode mailing list