WordPress.org

Ready to get started?Download WordPress

Forums

Hosting account suspended for hosting an eBay phishing site? (4 posts)

  1. smartcard
    Member
    Posted 7 years ago #

    My site on WordPress 1.2 and I noticed many SPAM comments to my posts.

    Today I got a mail from my host saying "Your domain, mydom.com, has been suspended for hosting an eBay phishing site at http://mydom.com/muc/signin.ebay.com...Name-hhsin.php. This sort of activity cannot be tolerated on our servers."

    First of all I did not have a folder called "muc"

    I talked to the host and they asked me to check the WordPress script and also for any 777 permissions.

    Please help me.

  2. yeleek
    Member
    Posted 7 years ago #

    Upgrade to latest version of WordPress and use your ftp client to look at the permissions on the files and folders? See if any are indeed 777?

  3. smartcard
    Member
    Posted 7 years ago #

    I have found posting in this forum that there are sites that were phishing even with version 2.x is it only the version issue.

  4. moshu
    Member
    Posted 7 years ago #

    There are version that are more vulnerable to being hacked than others. We always consider the latest the safest... although security updates can happen if a new threat is discovered.

    Your site might have been hacked through a wrong permission (never leave files or folder world writable, i.e. 666 and 777, respectively!); or through another script you use... the possibilities are endless.
    Also, it is not excluded that the server was hacked and then from there the bad guys infected more sites, not only yours.

    Here are some ideas to make your WP safer:
    http://codex.wordpress.org/Hardening_Wordpress

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.