On Thursday, December 12, 2013 at 7:15 PM, Jamie Holly wrote:
Change your server passwords too. There's a chance they could have got a hold of your password somehow and just uploaded the file through ftp/sftp.
Jamie Holly http://hollyit.netOn 12/12/2013 2:42 PM, Info Razor wrote:
Hello,
I just got one site hacked by this user:
Or at least that's what his file says in my public_html folder. There is a text file with inside of it, taking credit for the entry:
HACKED BY XZADX-xzadx@jabber.org
Is this hack fixed by the recent update 6.29?
Or is this a different sort of attack? I tried to google this but didn't find any reported connections to this tagline, but I did find at least a few other Drupal sites with this text file in it when I google for it.
I changed all my database user names and passwords, htaccess checked in all the file/tmp folders, are there other precautions necessary?
Thanks.
--Info Razor
--[ Drupal support list | http://lists.drupal.org/ ]