Quote:
Originally Posted by Stefaans
This sounds exactly like the IFRAME hacks that have been discussed on this forum. Your computer gets infected with a trojan when viewing a hacked page (and you download something?). The trojan transmits your FTP passwords back to the hacker whenever you use FileZilla or other FTP client. The hacker then uses a network of infected computers to modify the web pages to plant more IFRAME hacks...
Sallen812, changing your FTP passwords will solve the problem, but only if you are 100% sure that your computer is virus free.
|
Thank you, Stefaans!
I'm getting tired of the "oh my $@$@ server hacked" posts everywhere!
Yes, as Stefaans summarized, there is a group of hackers operating out of China
right now who is getting their password via the use of trojans on the user's
own computers at home and
NOT the servers or data centers where
their web hosting accounts are located.
It is important to note a few things:
1. Unless you totally clean your home computer of these trojan viruses,
any password changes you do at your hosting company will not work
because the hackers will be updated to your new password.
2. The hacking group is not only collecting web hosting information from
your computer at home but also banking login information as well and
if you logged into your bank from an infected home computer, they
likely have your bank login as well and there have been reports of
unauthorized bank transfers being made in various places already.
If you suspect your computer is infected, get the latest updates to one
of the top 5 antivirus programs and run full scans on your computer along
with the latest updates from a good trojan detection tool such as Spy Doctor
or if that is out of reach, at least SpyBot:Search and Destroy and try to
confirm your computer is completely clean and if it were me, I would go
ahead and change all my web hosting and bank passwords yet again after
doing all the local computer scans just to be sure.