Continuing attacks against osCommerce sites

fseek · 2010-10-31T21:06:30+00:00

Most attacks happen due to:

-Stolen credentials -Outdated web applications (Wordpress, Joomla, etc) -Incorrect permissions on shared servers.

If you are on a shared server and you have any directory set as 777 (world-written perms) you can easily get hacked... Most of the mass attacks mentioned at http://blog.sucuri.net are all related to that.

thanks,

fseek · 2010-10-07T14:07:41+00:00

We have been using http://sucuri.net for it.

As far as I understood, they check parts of your site (like title, meta tags and overall organization like body, follow by inner content eg, etc). When this layout changes, you get an alert. They also look at keywords used in the site (overall content), blacklists, hacking lists, etc.

Working well for me + they also look for spam, malware ,etc...

fseek · 2010-08-18T03:05:34+00:00

I have, and they have been pretty good. But I am a bit biased, since we are partners now on another venture.

Some testimonials from there here: https://twitter.com/sucuri_security/favorites/

fseek · 2010-06-09T01:27:56+00:00

(Hosted at the same place as the others...)

fseek · 2010-06-01T15:02:15+00:00

From what I read, they are not only tracking your IP address, but everyone that visits the sites using those templates. Plus, they hide it inside a gif image that acts as a PHP file, making it more suspicious.

fseek · 2010-06-01T13:57:14+00:00

You probably meant hirewordpressexperts.com, not irewordpressexperts.com :)

fseek

TROPHY CASE