[Nfb-web] {Spam?} Affiliate website hacked?

erik burggraaf burggraaferik at gmail.com
Sun Jan 24 14:41:22 UTC 2016 

Hello,  before doing anything in regards to taking down and putting up, do the following.
Be sure that you are running an ftp client that supports SSH connections.
Ensure that your server is set up for you to connect via SSH.
Make sure that you are making an ssh secure connection.

If you don't have this all set up you will only be hacked again next month now that they know how to find you.  It's sad.

Once you have a secure connection, go in and change your password to something that can't be guessed easily.  Try to make it 12 characters or more and be sure to include at least one upper case letter, one lower case letter, one number, and one special symbol such as ! @ # and so on.

Then and only net, repost your site.  before reposting from your old backup, go through every single folder and look for a file called something like, .htaccess.txt.  Edit each and every one of these files, making sure that they all point to http://www.yoursite.com <http://www.yoursite.com/> or simply delete all of the ones you can find.  These txt files are very vulnerable in an unsecure server, and a nefarious person gaining access to your server simply has to put their garbage website's address into the htaccess.txt file to highjack all users away from your site and onto theirs.

After all this, you can be reasonably sure your site is secure, but browsers will still report that your site is unsafe.  This is because google analitics robotically crawls the web and automatically flags sites.  It can take 3 to 6 months for the robot to decide you are safe once again.  To speed up the process, you can sign up for google analitics, register your sites and domains, verify your ownership with google, and force analitics to reevaluate your site in 24 hours.  Once you have a clean bill of health, browsers will stop frightening your customers away from using your site.

If you have any questions or there is anthing I can do  to help, please let me know.

Best,

Erik
> On Jan 18, 2016, at 5:14 PM, lacitre via Nfb-web <nfb-web at nfbnet.org> wrote:
> 
> It has been brought to my attention that my state affiliate website located at www(dot)nfb-in(dot)org has been compromised.  When trying to open it using Google Chrome or Firefox, a warning appears on the screen.  It works in Safari and Internet Explorer.  The first thing I will do is take down the site and put it back up.  Do you have any other suggestions or does anyone else have experience with this issue?  
> 
> Thanks,
> Scott and Tara
> _______________________________________________
> Nfb-web mailing list
> Nfb-web at nfbnet.org
> http://nfbnet.org/mailman/listinfo/nfb-web_nfbnet.org
> To unsubscribe, change your list options or get your account info for Nfb-web:
> http://nfbnet.org/mailman/options/nfb-web_nfbnet.org/burggraaferik%40gmail.com

More information about the NFB-Web mailing list