Site Hacked?


#1

It appears that our site has been hacked by someone who may be preparing for a DDOS attack. Every JavaScript file on our site has had the following line of code added (many times):
document.write(’</script>’);

DreamHost folks, can you please look into the issue.

We have removed the offending code, and are changing the passwords for our account.

Regards,

Rob


#2

Hey Rob,

You’re new here it seems. If you want to bring something about your site to the attention to people who work at DreamHost, you are going to want to file a Support ticket by logging into the Web Panel. That way you can tell them how much you know and what your site is so they can actually “look into the issue.”

Other than that in addition to changing passwords you’re going to want to run antivirus/anti-malware software on all computers used to update the site or may have accessed the web panel. There maybe a keylogger stealing your passwords and if that is the case just changing them won’t prevent this from occurring again. Also don’t forgot to get yourself an education in net security by researching the subject or seeking the services of someone with expertise.

Also don’t forget to backup frequently and an incremental backup (where files that changed are copied) would help you spot the out of ordinary case of JavaScript files being updated.

Customer since 2000 :cool: openvein.org