1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Sites hacked by the Bangladesh Cyber Army! Can't log in!!

Discussion in 'Black Hat SEO' started by kuryakin, Jan 27, 2013.

  1. kuryakin

    kuryakin Regular Member

    Joined:
    Jun 26, 2012
    Messages:
    216
    Likes Received:
    47
    Hi folks.
    I have a couple of wordpress sites that have been hacked by the Bangladesh Cyber Army. I'm pretty new to IM and have limited (but growing) tech knowledge.. As far as i can see from the outside, all they have done is place a logo with a link to a Japanese shopping site on the front page.

    But anyway, i can't log in. I have tried changing my password/ username in PHPmyadmin but it makes no difference. Does anyone have any ideas what to do?

    Would be much appreciated.
     
  2. DarkPixel

    DarkPixel Jr. VIP Jr. VIP Premium Member

    Joined:
    Oct 4, 2011
    Messages:
    1,328
    Likes Received:
    1,239
    Location:
    ↓↓↓↓
    Home Page:
    Try to recover your password. Click on forgot my password, and follow the guide, to make wordpress send you a link resetting link to your email.
     
  3. allenqi

    allenqi Newbie

    Joined:
    Jan 27, 2013
    Messages:
    12
    Likes Received:
    0
    do you have server permissions?
     
  4. AgentOrange_MkUltra

    AgentOrange_MkUltra Junior Member

    Joined:
    May 29, 2009
    Messages:
    180
    Likes Received:
    44
    Occupation:
    Hijacking Your System
    Location:
    Many steps ahead & Behind 4 Proxies + double VPN!
    Is it a vps, a server or just shared hosting? If shared hosting you will need to ask help to the server administrator....

    If you are root, you can change the phpmyadmin password.

    AT ANY RATE YOU OR YOUR HOST HAVE NOT UPDATED AND PATCHED! THAT IS WHY THEY CAN USE AN EASY BOT TO MASS-HACK THOUSANDS OF SITES.

    UPDATE!!!!!

    Next time try to get hacked by a cooler country at least....Iran, for example)))
     
  5. kuryakin

    kuryakin Regular Member

    Joined:
    Jun 26, 2012
    Messages:
    216
    Likes Received:
    47
    Thanks people.. It is on shared hosting.. I did manage to access PHPmyadmin and change the password but it didn't work.. However i have managed to do exactly that before i was hacked, so i think the hackers have done something else preventing me from changing it back..

    And yes, i have learned my lesson regarding updates! Duly noted!

    Not sure if i have server permissions, how do i check?

    Thanks
     
  6. maecenas23

    maecenas23 Jr. VIP Jr. VIP Premium Member

    Joined:
    Oct 12, 2010
    Messages:
    1,070
    Likes Received:
    986
    Occupation:
    Full-time worker :D
    Location:
    #RIPCity
    When I had similar problems I've hired some guy from Odesk to solve the entire problem. From that moment I'm always taking safetu measures. But I guess it's never too safe :)

    Once everything is solved, check some security plugins at least.
     
  7. plut0

    plut0 Regular Member

    Joined:
    Aug 2, 2008
    Messages:
    256
    Likes Received:
    59
    chmod index.php 644 its better so you can avoid mass hack attemp.
     
  8. _swes_

    _swes_ BANNED BANNED

    Joined:
    Nov 4, 2012
    Messages:
    59
    Likes Received:
    17
    PM your skype, and I'll check it out for you. They probably just shelled your domain, and have access to your entire database/ftp.
     
  9. ascura

    ascura Junior Member

    Joined:
    Mar 1, 2011
    Messages:
    132
    Likes Received:
    38
    you mean you can't login to wordpress dashboard?

    Go to phpmyadmin, click your wordpress database name, click users, scroll down and click edit.
    on the user_pass column, on the first box (drop down menu) choose MD5
    the next box is where you type your password.
    it will have some random characters there, just delete and type your password.
    make sure the username and email is correct (not changed by attacker).
    Scroll down, press Go button.
    Try to login again.
     
  10. bertbaby

    bertbaby Elite Member

    Joined:
    Apr 15, 2009
    Messages:
    2,019
    Likes Received:
    1,496
    Occupation:
    Product marketing
    Location:
    USA
    Home Page:
    Go to your hosting company and explain you have been hacked. Hopefully they have backups and can restore you to a point pre-hack.
     
  11. chris.blair86

    chris.blair86 Newbie

    Joined:
    Jun 19, 2010
    Messages:
    13
    Likes Received:
    2
    something very similar happened to me like this first day I launched my website which I spent 6 monts working on. very frustrating

    I got my programmer to make wp-admin only accessible from 5 ip addresses. If you try to access it from a different IP you get an error message.
    I also made the server password extremely difficult
    I also check once a week at least for updates to wordpress themes and plugins. Also deleted any plugins that i did not need
    no problems since.
     
  12. _swes_

    _swes_ BANNED BANNED

    Joined:
    Nov 4, 2012
    Messages:
    59
    Likes Received:
    17
    Make sure to change over your password to a MD5 hash as well, or this might not work.
     
  13. kuryakin

    kuryakin Regular Member

    Joined:
    Jun 26, 2012
    Messages:
    216
    Likes Received:
    47
    Thanks, i can log in again at least.. still cant figure out how to get the link they left off my homepage though..
     
  14. kuryakin

    kuryakin Regular Member

    Joined:
    Jun 26, 2012
    Messages:
    216
    Likes Received:
    47
    I am making progress (slowly) but my new problem is that i can't update anymore.. When i try to update through the dashboard i get the message 'page not found'
    Any advice? Maybe i should let a pro deal with this but i enjoy figuring things out..
     
  15. keval007

    keval007 Junior Member

    Joined:
    Jun 12, 2012
    Messages:
    145
    Likes Received:
    26
    Occupation:
    Web Scraper & PHP Developer
    Copy all your theme files. Then Install fresh wordpress copy and restore your theme files.
     
  16. kuryakin

    kuryakin Regular Member

    Joined:
    Jun 26, 2012
    Messages:
    216
    Likes Received:
    47
    Ok, thanks, so does that mean i copy the wp-content folder and the database? Anything else? I've never done this before..