Notice

The forum is in read only mode.

Support Forum

Welcome! Support Forums have been reactivated
Welcome the Technical Support section. Help us in assisting you by providing us with a concise and descriptive elaboration of your issues. Be specific and if possible, provide us with a step-by-step instruction in replicating your problem.

Site hacked 3 times in the last 2 months

10 years 2 months ago
Licenses:
JomSocial Active

Hello...I have a site that has Jom Social installed, and the site has been hacked 3 times in the last 2 months. I have installed the patch that was released a few weeks ago, but the site was hacked again after that. I have had my network specialist clean it up every time, tightening security each time it has happened. We cleaned up the site and have stopped the mass emails from being sent. Is it possible for me to have someone take a look at the site and see if there is a vulnerability that we are overlooking? I have not upgraded to 3.0 Joomla yet.

10 years 2 months ago
  • Chris's Avatar
  • Chris
  • Visitor
  • Thank you received: 0
Licenses:

HI Deirdre.

Our latest secruity patch should fix all the problems with secruity, however very often hackers leaves some kind of a files on your server, and this cannot be fixed with our secruity hotfix. You'll always need look for some suspicius files on your root folder, for instance x.php or indonesia.php . Also you said that you hire a specialist for this task, and after his cleaning up the site was hacked one more time ?

10 years 2 months ago
Licenses:
JomSocial Active

I don't think we got all the folders at the root deleted. We found some more and deleted them now, so we will see if it happens again. If I applied the patch and deleted all the strange folders/files at the root level, should I be protected? I am currently at Jom Social 2.8.4.2 (with the patch files applied)...do I need to upgrade to the latest version? Is there any chance someone can check out my site to make sure there are no rogue files left?

10 years 2 months ago
  • Chris's Avatar
  • Chris
  • Visitor
  • Thank you received: 0
Licenses:

Hi there.

The secruity fix was posted for all versions, so if you installed the poper one for your versions, then yes of course you should be protected.

10 years 2 months ago
Licenses:
JomSocial Active

We cleaned up everything suspicious looking in the root and the patch has been applied, and today some of the strange folders/files are back. Is there a way to have someone log in and take a look? Or, is there some other recommended way to get help on this? I have a security specialist trying to deal with this, and even he cannot figure out why it keeps happening. Can someone help us?

10 years 2 months ago
  • Chris's Avatar
  • Chris
  • Visitor
  • Thank you received: 0
Licenses:

HI Deirdre.

Could you take a look on this thrad > www.jomsocial.com/forum/installation/135...update-applied#68881 It explains very well how the JomSocial secruity hole was working.

Moderators: Piotr Garasiński
Powered by Kunena Forum

Join 180,000 websites creating Amazing communities

JomSocial is the most complete, easy-to-use addon that turns Joomla CMS into a
full -fledged, social networking site

TRY NOW BUY NOW

About Us

Our product

Support

Contact Us

Site Policies

Elsewhere

© JomSocial.com All Rights Reserved