Hi, recently my webforum was defaced (I have no idea how) but they just edited my index.php file and replaced it with their own. I know what site did it to me, it is some turkish site so if anybody can read turkish please PM me, but what should I do about it... if they did it so easy in the first place how can i be sure they wont keep doing it?? What should I do, any suggestions..
they got me once also. what software are you using for your forum? make sure you got it totally patched
i have the latest vbulletin and can u you define patched in more detail thanks.. btw the site that hacked me was turk-h.org and i just realized they made their site password protected for some reason?
Theirs not a lot you can do to be quite honest, which is why updated backups are important. You can report this online at the offical ic3 govement website. Google it because I can't post URL's yet.
What sort of plug in's are you using. Plugins can sometimes open up vulnerabilities. Have you contacted Vbulletin Support? Patched basically means that they edited the original version. The last patch was applied when a critical security vulnerability was found in some portion of the code. Thats why it's always important to stay current with patches! Backups are jsut as important, because even a patched program isn't hack-proof.
make sure you have the latest stable version of vbulletin, as well as updating any of the plugins you've added adding more mods just gives a few more possibilities for exploits.
make sure ur vbulletin is (if nulled, nulled properly) or is the latest and check ur plugins as some are outdated and easily hackable.
If it's nulled than it's not only vulnerable it's illegal I'd be willing to bet the reason you keep getting hacked is because one of your modifications are open. Can you post a list of what you have installed? Vb has recently retired a good number of mods due to security glitches found. You have to remember that Vbulletin is safe, but when you modify it (modifications) it's no longer the same safe program.