Was hacked. Lost over $1,000. You could be effected also!

That really is a new low! Sorry to hear about it.

If you were using phpld, there's a table PLD_PAYMENT which shows details for all the payments you receive. It doesn't look like it contains urls, but you should be able to re-construct from this the name and email address for all the submissions you received. Maybe use this info to email people affected.

 

demn man that sucks ...

i need to check mine now

 

I would notify Paypal immediatly and have that account shut down ASAP..
( As im sure you have already done)...then as onlinedude said contact all interested parties and offer them thier link as im sure that they dont want to get burnt and this will only build your reputation as a decent directory owner whom cares about his customers.
Yes that does suck and this should be a reminder to all to make those passwords harder or in effect take better precautions so this sort of thing doesnt keep happening to others.... Getting with your host may also be a good idea for them to do somthing about these sort of things...

thx
malcolm

 

@malcolm - he dont have submitters contact email - He deleted all of them in a go..

Thats very sad.. We will try hard to support you in every respect.
Can you remember any of the url you deleted

 

As blogmaster told that Saad was going to submit to your directory (or submitted) - Better to ask him to which paypal account he paid for a listing on your site..

 

I agree that if i submitted and i paid and dont see my link i will make the effort of contacting you so obviosly the money never went threw...OR the contact page was changed or is broke is/are really the only options that i see available.

Again my sites are all phpld so im only used to how that works and not syndicat so i dont know if its the same set up...

thx
malcolm

 

Hummmm,

There must be something to know who did it. It is impossible not to leave a something behind.

Your story is unique, I have heard others but yours is the best.

I wish you good luck!

 

Someone hacked a site of mine and I mentioned it in a topic that he was in at digital point.

I was nearly banned for harassing him.

I wouldn't bother. If you got his Paypal ID, then you can get lots of info from him. Just go after him.

 

aaron, sorry to hear this situation, I really hope everything goes back to normal, I couldn't imagine how much stress that may have caused.

Take it easy and let us know how everything is going.

 

I was wondering is there any way for a scammer to bypass the payment process. How do they get past the files that bring up the paypal submission page?

 

Horrible story, even hard to imagine.
Did you investigate on someone who could have access to your network?
Telling the truth I could do the same with about 500+ directories.
And not because people trust me while installing mods.
But then what? Escape where? All for $1K?
Whoever the thief is - he's very stupid thief.

 

Woa aaron...sorry to hear that!
Can ya post the email id of this scammer? this thread will get picked up in serps soon so post it on the first post too.

 

If you had no idea how they got in, how did you fix it?

I take it by fixed you mean the site's working again but the vulnerability still exists. Don't suppose you have any server logs after this long?

 

With all the interest I'm sure you will get it sorted out. This is good reason for the rest of us to double check our security. Pls let us know if you ever figure out just what the vulnerability was...

 

well im sure they will get another email and then try again with someone elses site till they get caught then it becomes a federal crime if they are US citizens or sometimes it dont matter like the Enron scam as they grabbed those brits and dragged them to USA soil for prosecution...

Glad to see its been handled though...

thx
malcolm