[vox-tech] hacked site

Gandalf Parker gandalf at community.net
Tue Jun 21 14:30:29 PDT 2011


On Tue, 21 Jun 2011, jimbo wrote:

> This intrigues me.  I want to know more.  Has anybody ever had this happen
> to them?  Are these two tied together somehow?  I mean Kansas and Indonesia?

I used to do computer forensics for ISPs. The IP address used to fo an 
initial breakin is rarely the same as the one used to access it once its 
broken. And neither are likely to be the persons personal address altho it 
is possible to catch them with some work.

You should be sure to contact whoever is hosting the website also.

Make sure that no new files have been added to give them a new backdoor in 
case you close the one they found.

Its a good idea to check not only the access logs but the error logs on a 
regular basis. Especially if you are about to add a new feature. Always 
look for it in the errors log before you add something new


Gandalf  Parker



More information about the vox-tech mailing list