old site hacked

stoke1863 · 14 Feb 2011 at 21:06

i have got a .cc domain that was set up just for a small university demonstration to showcase open source software. so i had

Opencart
OS commerce
Magento
Cubecart

all installed, anyway obviously once my project was done i never looked at it again. A few months ago some dude on this forum was asking about e commerce software so i gave him my link so he could see how the systems work.

today i decided to go on the site to uplaod some new stuff for uni and i find out it has been hacked. It said it was hacked by an indonisean hacker called phsyco.

and googling the domain name now brings up some hacker sites with my site listed as been defaced and unprotected lol.

I have deleted that domain name from my server now but i was wondering what e commerce software would be the one that they managed to get through? They could have delted evreything in my FTP but they didnt.

and a warner to other people who out there links on large forums like this

daz · 14 Feb 2011 at 21:21

Could easily be any or all of them - if you don't update your software, you will get hacked when vulnerabilities are found.

daz · 14 Feb 2011 at 21:22

stoke1863 said:
and a warner to other people who out there links on large forums like this

That's unlikely to have anything to do with it - the hackers are probably able to search google or other search engines for a particular string that is only displayed on certain versions of the software, making it trivial to track down outdated installations and attempt to exploit them.

stoke1863 · 14 Feb 2011 at 21:27

daz said:
That's unlikely to have anything to do with it - the hackers are probably able to search google or other search engines for a particular string that is only displayed on certain versions of the software, making it trivial to track down outdated installations and attempt to exploit them.

thats true. Its just OCUK was the only place it had ever been posted.

and none of the software was updated because it wasn't used

MikeHiow · 16 Feb 2011 at 08:45

OSCommerce has a pretty bad security flaw;

Google for OSCommerce upload exploit.

I recently had this issue with a client's site. The easiest quick fix is to add basic auth to the admin dir, but there are options to rename it or address the problem directly, too.