Diagnosing a Hack
-
A few weeks ago an old theme directory was compromised with an outdated TimThumb php file. They were able to modify the .htaccess file and create a temporary forward. I thought that was the extent of it but recently I found one post on the site which leads to a 247 pill site. It’s the only one I’m able to trace so far but I’m not quite sure how to diagnose getting the hack to stop. I’ve scanned a few hack articles that mention database sweeps but the locations are empty — so it’s not the same hack or maybe style.
Any other thoughts or do I need to do the top down full reinstall?
Viewing 2 replies - 1 through 2 (of 2 total)
Viewing 2 replies - 1 through 2 (of 2 total)
- The topic ‘Diagnosing a Hack’ is closed to new replies.