somehow someone exchanged a "1oo% money back guarantee" picture for a "fuck you im a theif i dont refund you money i keep it" yeah.. So is there anyway to prevent this form happening again?
was wondering why there was no sales coming from that yesterday!! I got one today but yeah man be careful about people that do that crap!!
the Chinese? you could use this as leverage. "My Guide is so amazing that the Chinese gold farmers are trying there hardest to hack it and stop you from buying this guide EVERYDAY" lol
Doubt you can prevent this completely. Though, you can harden your server and optimize the code to minimize the chance of being hacked.
What can we do? If multi billion company sites get hacked, even on super bowl sundays... what can we srsly do? Well i fixed it and now im looking for someone to check out my script to make it more secure. Anyone have ideas? And as i say in the landing page "chiense hack me"... they did it with adwords.... thats a fact. This time i dont know who it was. i called godaddy and theyre getting a court order to see who it was.
Have you checked your raw log files to see how/who did it? I had a problem similar to that a while back. Had a site that I was running and someone kept replacing the index.html page with a page that would redirect to a domain they were reselling. They were trying to drive all of my traffic to their site. I can't remember all the details because it was some time ago but they were using some sort of PUT command to put files in my web space and they were able to do so because my directory had the "write" permission set to everyone. Once I looked through the log files, I was able to see how they did it but like I said, it was some years ago and I just can't remember off hand now. I'd take a look through there to start and see what you can find out.
yes, put - get / wget, can be very dangerous... Most shared hosting environments disable by default and enable by request, usually to allow for script requested cron jobs... But if your on a VPS or Dedi and you enable these functions, take care and monitor your logs every now and then. Also, some bloated scripts will allow sql injections that you may not be aware of (Joomla adds are infamous for this) that can grant access.
First, you might want to talk to your programmer about this matter. If you do not have one, check out this site and explain the problem to the programmers over there. I am sure that you will find someone. http://scriptlance.com/ Good Luck
Hi, if you're interested in securing your website you can PM me. I will send you my company details and a quotation for the job. Thanks
That is all that they changed? Strange. You were not hotlinking that image from someone elses site...right?