Wave Of Hacking Going Around! Take These Steps To Avoid The Wrath

AndrewHansen · 06-19-2009, 02:30 PM

Hey Guys,

I have had some terrible trouble this last week with some of my sites getting attacked by a virus that I now know is also affecting alot of marketers, AND... I have reason to believe, Hostgator users (very likely other hosts) as well...

I've spent the week wrestling with coders and hosting support about it and gotten all the information I can on how to prevent it, so I thought I'd share it with everyone here too.

It's a piece of Malware that infects your local computer, and digs through to find passwords that are stored in programs like password banks, robo forms, ftp programs, etc. It then accesses your site via FTP and adds malicious code to your index pages, which causes Firefox to display a "REPORTED ATTACK SITE" message which (rightly) prevents access to your site.

You then have to go through and delete all the malicious code on any pages that are affected (finding which pages and how many is a matter for your hosting account) before your site can be allowed to view in a browser again. Suffice it to say it's a right pain in the ass.

So to avoid having this affect you, I advise everyone reading (as I have been advised) to:

1. Don't store any passwords in password programs like the ones above. If you have passwords saved in these programs, you might consider clearing the records of those programs so that information isn't available.

2. Run these malware detectors on your computer to ensure you don't have infections:

Malwarebytes.org

Norman | Norman Malware Cleaner

There are many Malware scanners out there and I've been told it's good to run more than one as any given one doesn't always pick up all infections.

3. There's suspicion that Adobe Reader has some vulnerability and if you don't have the latest update you should upgrade it asap.

That's all I know for now.

So you don't get too worried, I've been informed that it's not a particular dangerous hack, it doesn't delete your site or try to find credit card info or anything, but it's dangerous enough to cause problems and be highly disruptive to your business.

I hope this is helpful.

Andrew

Andyhenry · 06-19-2009, 02:46 PM

Thanks for taking the time to share that Andrew - It's appreciated.

Fernando Veloso · 06-19-2009, 02:54 PM

Thanks Andrew, will check all my sites and ftp connections.

06-19-2009, 02:30 PM	#1
AndrewHansen Senior Warrior Member War Room Member Join Date: Feb 2006 Location: Bucerias, Mexico Posts: 1,637 Thanks: 8 Thanked 270 Times in 44 Posts Social Networking Contact Info	Wave Of Hacking Going Around! Take These Steps To Avoid The Wrath Hey Guys, I have had some terrible trouble this last week with some of my sites getting attacked by a virus that I now know is also affecting alot of marketers, AND... I have reason to believe, Hostgator users (very likely other hosts) as well... I've spent the week wrestling with coders and hosting support about it and gotten all the information I can on how to prevent it, so I thought I'd share it with everyone here too. It's a piece of Malware that infects your local computer, and digs through to find passwords that are stored in programs like password banks, robo forms, ftp programs, etc. It then accesses your site via FTP and adds malicious code to your index pages, which causes Firefox to display a "REPORTED ATTACK SITE" message which (rightly) prevents access to your site. You then have to go through and delete all the malicious code on any pages that are affected (finding which pages and how many is a matter for your hosting account) before your site can be allowed to view in a browser again. Suffice it to say it's a right pain in the ass. So to avoid having this affect you, I advise everyone reading (as I have been advised) to: 1. Don't store any passwords in password programs like the ones above. If you have passwords saved in these programs, you might consider clearing the records of those programs so that information isn't available. 2. Run these malware detectors on your computer to ensure you don't have infections: Malwarebytes.org Norman \| Norman Malware Cleaner There are many Malware scanners out there and I've been told it's good to run more than one as any given one doesn't always pick up all infections. 3. There's suspicion that Adobe Reader has some vulnerability and if you don't have the latest update you should upgrade it asap. That's all I know for now. So you don't get too worried, I've been informed that it's not a particular dangerous hack, it doesn't delete your site or try to find credit card info or anything, but it's dangerous enough to cause problems and be highly disruptive to your business. I hope this is helpful. Andrew
	How To Easily Get 1000 New Visitors Each Month To Any Website... http://1000newvisitors.com/warrior

06-19-2009, 02:46 PM	#2
Andyhenry Beware - Straight Talker War Room Member Join Date: Jan 2004 Location: United Kingdom Posts: 6,379 Blog Entries: 21 Thanks: 394 Thanked 1,956 Times in 495 Posts Social Networking Contact Info	Re: Wave Of Hacking Going Around! Take These Steps To Avoid The Wrath Thanks for taking the time to share that Andrew - It's appreciated.
	Grab my Selling IM to offline businesses slides. Join My 5-week Coaching Program Are you buying silver? no? - Read this. UK Internet Marketers hang out Get Free Traffic 15 Minute Traffic Technique

06-19-2009, 02:54 PM	#3
Fernando Veloso Portuguese Warrior War Room Member Join Date: Nov 2008 Location: Good Old Europe Posts: 1,305 Blog Entries: 1 Thanks: 467 Thanked 204 Times in 133 Posts Social Networking Contact Info	Re: Wave Of Hacking Going Around! Take These Steps To Avoid The Wrath Thanks Andrew, will check all my sites and ftp connections.
	Taking efforts everyday! Working smarter and organized to reach my 2010 Goals!