Hackers, hacking my cpanel like it doesn't exist! Help!

Discussion in 'Security' started by Liquidation, Nov 4, 2008.

  1. #1
    I cannot stop them, no matter what I do.
    They always hack me, and deface my website.

    What could I do to stop this, this is the price you pay for having a high earning website.

    The hosting company have no idea how to stop them.

    I need your help guys. :eek:
     
    Liquidation, Nov 4, 2008 IP
  2. crivion

    crivion Notable Member

    Messages:
    1,669
    Likes Received:
    45
    Best Answers:
    0
    Trophy Points:
    210
    Digital Goods:
    3
    #2
    Let us know what kind of site, what platform, what os uses your host, the site url
    pm me if you want paid help
     
    crivion, Nov 5, 2008 IP
  3. root1987

    root1987 Peon

    Messages:
    33
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #3
    try to scan Your site scripts with antivirus to knwo if you have a shell script uploaded
     
    root1987, Nov 7, 2008 IP
  4. JackHeskett

    JackHeskett Peon

    Messages:
    44
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #4
    Check file permissions, remove root user and use wheel group, change ssh port.
    Change your password often.

    You are best contacting a company that can help you with this if you are unsure.
     
    JackHeskett, Nov 8, 2008 IP
  5. WeWatch

    WeWatch Active Member

    Messages:
    75
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    50
    #5
    It sounds like they're not "re-hacking" you each time, but that their original hack inserted itself somewhere that you're not looking.

    Is it a dedicated server? Then scan the entire server with a good anti-virus program.

    Do you have any log files you can provide?
     
    WeWatch, Nov 16, 2008 IP
  6. yajur

    yajur Banned

    Messages:
    193
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #6
    you have any upload script,also please update all ur codes to latest versions
     
    yajur, Nov 25, 2008 IP
  7. zeromaster

    zeromaster Peon

    Messages:
    38
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    0
    #7
    Well yeah server could be rooted or something is being exploited what firewall do you use. You might consider using this free firewall
    http://www.configserver.com/cp/csf.html
    It server check does a pretty good job of telling you what isnt secured and what has known security issues
     
    zeromaster, Dec 4, 2008 IP
  8. bread102

    bread102 Peon

    Messages:
    40
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #8
    Well what exactly are they doing, getting access to your cpanel, your ftp, mysql or something else? Please be more specific as it would help a great bit!
     
    bread102, Dec 6, 2008 IP
  9. hostindya

    hostindya Banned

    Messages:
    46
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #9
    u have dedicated server or shared one?
     
    hostindya, Dec 7, 2008 IP
  10. hostindya

    hostindya Banned

    Messages:
    46
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #10
    forget tell one thing if u use dedicated server please install Mod_security
     
    hostindya, Dec 7, 2008 IP
  11. B'd

    B'd Peon

    Messages:
    475
    Likes Received:
    16
    Best Answers:
    0
    Trophy Points:
    0
    #11
    try contacting any ethical hackers here.......

    if anyone around please contact me....i need some help from a ethical hacker to improve my site's security
     
    B'd, Mar 26, 2009 IP
  12. baonhi41

    baonhi41 Peon

    Messages:
    141
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #12
    Your code may be insert an harmful code that is allowed attacker use RFI attack. Contact me xibamvailolz for free help
     
    baonhi41, Mar 27, 2009 IP