Web Hosting Vodahost    

Home Take The Royal Tour! Order Now Features Prices
Go Back   Web Hosting > VodaHost Web Hosting Support > CPanel - Control Panel

Notices

CPanel - Control Panel All Cpanel questions and issues.

Reply
 
Thread Tools
  #1  
Old 07-04-2009, 12:58 AM
Private
 
Join Date: Aug 2006
Posts: 3
Exclamation cpanel hacked ??

I operate a website that uses an offline credit card payment facility, hosted by Vodahost, with the site operating via Soholaunch software.
A key module in my shopping cart programme has been repeatedly hacked with an email sub programme - despite changing my cPanel password several times. The hacker could only have done this by gaining access to my FTP (I have Bluevoda and cPanel - same UN and PW).
I have scanned my PC for malware - all clean.
How is my passward being hacked on such a regular basis. I select my passwords with random letters, numbers and other non-alphanumeric characters.
Is sql injection at play here ?
Would appreciate comments from an official source as I am beginning to doubt the security of Vodahosts FTP system.
Regards
AndyP
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Spurl this Post!Reddit! Wong this Post!
Reply With Quote
  #2  
Old 07-04-2009, 02:45 AM
Karen Mac's Avatar
General & Forum Moderator
 
Join Date: Apr 2006
Location: X marks the spot
Posts: 8,474
Send a message via MSN to Karen Mac
Default Re: cpanel hacked ??

SQL Injection has been going on all over.. first.. disable all email a friend, etc etc in soho. Change the password, then take it out of soho and only put it in the ftp area when you need to update.

Put in a support ticket.

Karen
__________________
KMAC Enterprise
Missouri Free Classified Ads
Charming Noveltees~Sports Logos Charms

I've learned that artificial intelligence is no match for natural stupidity!
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Spurl this Post!Reddit! Wong this Post!
Reply With Quote
  #3  
Old 07-04-2009, 11:56 PM
Private
 
Join Date: Aug 2006
Posts: 3
Default Re: cpanel hacked ??

Thank you for the reply Karen.
1) My FTP password is not stored in the soho admin programme (an old one was logged there but since deleted.)
2)email_friend/write review features long since disabled in my shopping pages.
3) I'm very concerned, as to alter the code on a module itself, you need access to it via BlueVoda or cPanel, and hence the password for these areas. My password is changed quite regularly, and I thought even a brute attack on it would result in a lockout so to speak.
I'll submit a ticket and see what response I get.
Regards
AndyP
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Spurl this Post!Reddit! Wong this Post!
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off



All times are GMT +1. The time now is 06:25 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.2.0 RC7
2005-2009 VodaHost Web Hosting Your Perfect Web Host - All Rights Reserved

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203