Dolphin has important security problems

dddolphinAdvanced

101 posts

Need Help!!!!!!!!!!!!

Yesterday suddenly I was not able to access my site and when I contacted my hosting provider, I was told that my account has been suspended because it has been compromised by a phishing attach.Someone has broken a part of your Dolphin site inserting malicious scripts.Some credit cards numbers have been stolen too.It depends because Dolphin has important security problems, expecially in the permissions of some folders.

The software you are using ( dolphin in this case ) that are not really safe.

Now My site has been suspended and I am not sure how long it will take my hosting provider to cleanup my site

The question here is HOW DOLPHIN 7 script is Safe to use....

All the files permissions had exactly what has been defined by BOONEX. then how the phishing attach done on my site..

Any other member faced the same issue?? if yes please let me know what you done to bring your site back .

Who will take the responsibility about this.. Is it Hosting provider fault or the Dolphin Scripts???

Thanks,

Another Day past.............................

Quote · 1 Sep 2010

deano92964Premium

10772 posts

Most compromised servers i have seen have all been because the FTP or SSH password was compromised. The primary reasons would be password was given to someone that should not have had it or in most cases, password was to easy to guess, or was a common word. I have sat and watched SSH logs for hours watching as people attempt password after password after password.

The first thing you MUST do is change all passwords. And i mean all of them. cPanal, FTP, SSH, every password you have for the site and server. And make very sure it will not be easy to guess and is not a word found in a dictionary. A mix of both upper and lowercase letters and a couple of numbers are best.

Look through all of your site for directories that were not there before. Phishing sites are generally setup in a subdirectory somewhere within the root of the domain.

Ask you host to check logs for ftp and SSH to see if there was a logon from a IP that is not yours, or from an area that is not your area.

And always keep this in mind. Nothing on the internet is 100% secure.

I find this blame game that people insist on playing irritating. Especially when it involves things that cannot under any circumstances be guaranteed by anyone.

https://www.deanbassett.com

Quote · 1 Sep 2010

MulchitAdvanced

178 posts

I had the same thing happen about 2 years ago, Honestly the way it was explained to me was that they were able to get into my host. But I wasn't sure what happened. My host had a backup of all my files and db, so after they went through my account and found that it was clean we restored the site, but only after comparing the files I had on my computer to the ones that were on my server. we had found that someone inserted a bunch of files that we just deleted and changed my password to something that I can't even remember. But I am now on a different server and have not had a problem since.

Quote · 2 Sep 2010

ilbellodelwebPremium

1088 posts

Hello,

also my site is been compromised.

We have received 3 attacks in 6 days.

Regards

See my products at http://www.boonex.com/market/posts/ilbellodelweb | Hosting: zarconia.net

Quote · 6 Sep 2010

Nathan PatonUndefined

9604 posts

PEBKAC.