Two of our sites were just hacked. Getting this message when you try to go to the site: by r00t-x uid=0(root) r00tx@hotmail.com ~ Has anyone else dealt with this before? I'm not sure what to do so any help would be much appreciated. Thanks
your not the only one http://www.gamemorph.com/ http://www.zone-h.net/defaced/2008/02/14/job.wuxi.cn/ http://obi4am.info/forums/ http://www.qatef4e.com/ http://psocandy.com/
Is this a dedicated server or shared account? If shared, you'll have to contact your host, if dedicated, have you tried ssh?
Your backdoored also, rebuild and reconfig server, secure and migrate old data back on. Good luck Regards, SSANZ
Thanks everybody for the comments. Looks like the hosting company managed to get it resolved. Definite scare but it looks like it was just a front facing hack.
I recently had this issue with 2 of my sites, which I have now downed. I won't name the hosting provider I use, but I cannot understand why my websites have been hacked into for a second time. I have had basic HTML/CSS index pages up online, until I got both sites properly setup offline. It's made me think about if I should bother continuing with either project if my websites are easily hacked. I assumed once I deleted the pages affected the problem will be over, but perhaps not. I will have to read up on proper website security issues and inform my host of what has happened. Is it common for hosting servers to get hacked?
No it's not common for hosting accounts/servers to get hacked unless the hosting company has failed to take the proper security steps. The same applies to virtual and dedicated hosting accounts. If he is unable to access via FTP or SSH, I suspect this was a script issue where the running site script was comprised.
Thanks for your reply and thoughts. I was asked by my host a minute ago to change file permissions of my domain folders and my index files. Maybe this was the key issue, I'm not sure. I think they are going to check to ensure nothing else was changed. Either way I think I need to read up more on website security.