1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My site Hacked by Red Hat Team

Discussion in 'BlackHat Lounge' started by lahtiimeja, Oct 12, 2010.

  1. lahtiimeja

    lahtiimeja Regular Member

    Joined:
    Feb 26, 2009
    Messages:
    236
    Likes Received:
    121
    Occupation:
    Telecommunication manager
    Location:
    Europe
    my site was hacked today by Red Hat Team. (who are they?)

    See example of hacked site on google:"Hacked by Red Hat Team"

    My site is hosted on hostingzoom, wordpress platform. Wordpress installed from fanstastico, arbitrary template.

    Does anyone have any experience hacked wordpress site?
    How to make WordPress more secure?
     
  2. zelma143

    zelma143 Power Member

    Joined:
    Jun 25, 2010
    Messages:
    571
    Likes Received:
    37
    Occupation:
    PHP programmer,Bot maker,iMacro script maker
    Re setup it and upgrade it.

    may be it can be solved..
     
  3. confined

    confined Regular Member

    Joined:
    Jan 4, 2009
    Messages:
    216
    Likes Received:
    91
    always keep wp updated.. but that isn't enough sometimes.

    disable the registration page by deleting the php file. most hacks involve exploits in the username field upon registration, giving them administrator rights.

    disable uploads and check the upload folder every now and then for shell scripts.

    you could also use another blogging platform
     
  4. infinity0

    infinity0 Junior Member

    Joined:
    Sep 14, 2008
    Messages:
    128
    Likes Received:
    15
    yes and always take the backups.There are some good security plugins available for wordpress,install it ;)
     
  5. lahtiimeja

    lahtiimeja Regular Member

    Joined:
    Feb 26, 2009
    Messages:
    236
    Likes Received:
    121
    Occupation:
    Telecommunication manager
    Location:
    Europe
    seems that a hacker modified the public_html/wp-content/themes/themes_name/functions.php and changed public_html/wp-content/themes/themes_name/index.php file. And changed WP admin name, email and password in mysql database.

    Anyway WP was updated to 3.0.1.)
     
  6. bugsyy

    bugsyy Regular Member

    Joined:
    Sep 19, 2010
    Messages:
    318
    Likes Received:
    60
    Location:
    Pyramids
    Red Hat Team .. I know they are arabs