Thanks Jamie. -- Info Razor Sent with Sparrow (http://www.sparrowmailapp.com/?sig) On Thursday, December 12, 2013 at 7:15 PM, Jamie Holly wrote:
Change your server passwords too. There's a chance they could have got a hold of your password somehow and just uploaded the file through ftp/sftp. Jamie Holly http://hollyit.net On 12/12/2013 2:42 PM, Info Razor wrote:
Hello,
I just got one site hacked by this user:
http://www.youtube.com/channel/UCjDqea5YaXQe8N77N5SPqaQ
Or at least that's what his file says in my public_html folder. There is a text file with inside of it, taking credit for the entry:
HACKED BY XZADX-xzadx@jabber.org (mailto:XZADX-xzadx@jabber.org)
Is this hack fixed by the recent update 6.29?
Or is this a different sort of attack? I tried to google this but didn't find any reported connections to this tagline, but I did find at least a few other Drupal sites with this text file in it when I google for it.
I changed all my database user names and passwords, htaccess checked in all the file/tmp folders, are there other precautions necessary?
Thanks.
-- Info Razor
-- [ Drupal support list | http://lists.drupal.org/ ]