Hacked and need a free temp host

Umbreon

Umbreon

Paragon
Joined
Jul 22, 2009
Messages
1,551
Reaction score
2
FP$
1,032
Hello guys, I just receive a very shocking discovery today.

Me and my friends site (which aren't open to public yet) got hacked by some group. And people hosted with empirehostings are at risk of getting hacked. I found some files in my system that can generate a complete list of domains and usernames hosted on that server, and a file that changes my wordpress user/pass. I immediately removed those files, to protect the system, and I took a backup with me. I changed my password immediately. I immediately notified ItsBrad about this.

Ok, so I removed the hacking tools, I took a backup of my site (including the databases). I am currently figuring out what the hackers left in the system, and how they managed to hack our server. What else should I do. I will get in touch with Empire Hostings later on tonight if I can.

I also need a free host to put my website on for around 2-4 months until I can get enough money for a hosting account (since I don't have any services to make money at the moment)
 
I actually can not believe it, Mr. breezy who is also hosted by EmpireHostings got hacked too. I am actually so peed off, if I lost all my custom work...
 
Well that's P2H.
I use lunarcp.com there #1 in my book.
Also good thing you got a backup.
Some aren't that lucky 🙁
 
I haven't had anything, my site is pretty secure, the passwords for everything are just random letters.
 
ZINC said:
I haven't had anything, my site is pretty secure, the passwords for everything are just random letters.
Click to expand...
Our password was random, had random letters numbers hashes ect, but idk...
 
Why did you guys not contact me? I have backups that I can use. I can't do anything about it unless I know.
 
This is not new. I have seen many people got hacked with their wordpress sites. One thing that a wordpress user has to know is it is a safe blogging platform but when you are not using too much plugins or themes or not from a trusted 3rd party site.

In concern to free hosting site you should go with http://www.000webhost.com/ they are pretty good and don`t implement too much restrictions on you like x10hosting.
 
Sshadow said:
Why did you guys not contact me? I have backups that I can use. I can't do anything about it unless I know.
Click to expand...

You guys should stick with Empirehostings, it's actually faster than quite a few popular sites and the support is good. I'm sure a backup will help, just try to keep things more secure!
 
@Sshadow we both were intending on contacting you but neither of us had time, we both have been offline, we are planning on removing everything in the cpanel to make it like default, then change password once every week! If that doesn't work, we might have to move hosts, we still really appreciate what EmpireHostings has done for us, but it's the only option I'm afraid... I will contact you for the database tonight.
 
Just to update you guys I worked with the company that I buy the dedicated server from last night and we found the cause and removed all the malicious files. I will be writing up a mass email later to all EH customers and I will post it here as well.
 
I also got hacked, but I was on a different host. It makes me extremely disappointed with people these days to see it happen to multiple forums within the same week. Sshadow is a great guy who will always do right by you, and I would recommend staying with him.
 
MrJohn said:
I also got hacked, but I was on a different host. It makes me extremely disappointed with people these days to see it happen to multiple forums within the same week. Sshadow is a great guy who will always do right by you, and I would recommend staying with him.
Click to expand...
Thanks MrJohn I appreciate that. Sorry to hear about your site 🙁

Ok here is the email I just sent out to all our customers.

Recently a few sites on EH were defaced. We have found the root cause of this and have corrected it. So you are informed the cause was a very out of date installation of Joomla. As you know with the big scripts like Joomla, Wordpress, PhpBB3 and many more it is important to keep them updated. New updates usually provide some small or big security fixes along with the other features.

To prevent this type of thing on EH from happening again we will be routinely sending out reminder e-mails to those accounts whose scripts have available updates. No spam or anything. It will be no more than once a week. We will also begin removing inactive free accounts after they have been inactive for 30+ days.

We have also installed a new Exploit Scanner(CXS). This will work hand in hand with ClamAV(AntiVirus) to check all uploaded material.

As a further security step we want to give a friendly piece of advise. Another common exploit is a hacker simply reading your configuration.php or config.php file directly. This is a common mistake for new and old webmasters. You should AWAYS set the permissions for these types of files to 640. This prevents anything from reading this file but the server itself.

The security of the server is of course our responsibility. However the security of your site mostly falls on you. Keeping your software up to date is one of the most important steps. Also complicated passwords are very important.

Thank you for using Empire Hostings and reading this. If you ever need us email us at [email protected] or use our ticket system here - https://empirehostings.com/shop/supporttickets.php
Click to expand...
 
Empire Hostings is very reliable and secure. 🙂 People are so jealous that they take advantage of a situation to degrade EH. But the reality is that EH is a very secure host.

As an owner of a good host myself, I can understand what it feels like to be a host. As long as the proper precautions are taken, and backups are available, there is no problem. It also seems like that people with good passwords, were not affected.
 
You must log in or register to reply here.

About Us

Since 2007, Forum Promotion has specialized in providing advertising solutions to webmasters looking to promote their communities. We pride ourselves in being the bridge that connects forum administrators, bloggers, and more.

Sponsors

Affiliates

    Universal Gaming The Coffee House

Stay Connected

Back
Top Bottom