if it hasnt been done i suggest this forum and database is backed up as soon as possible.
in the past two weeks a lot of sites have gone down due to a very nasty iframe attack thats doing the rounds.
it has hit several of the dewtailers websites that advertise on detailing world, which led them to back theirs up, same with most of the other car based sites, and general websites.
my website was also compromised by this as well.
if the staff here do a search on yahoo or google for iframe attack, you will see that its gotten very bad this past fortniht and many sites are being hit as it progresses down the search engines and links etc.
the ifram attack isnt a virus is html code thats been absfucated in iframe and turned into java code, it then is able to get in through the backdoor so to speak as a java update or applet etc, and your sites and servers dont pick it up as there is nothing in the code, however in the code is a html script addon that adds itself to the main html scource for the m,ain page of the website, this then auto loads jave on opening the main page and will download the java trojans from the link site.
if this happens you need the backup to over write everything, prior to doing this you need to check the server logs and the authentication logs to see where it came in and patch the ports and also you will need to change the passes in some cases as it makes the md5 encrytion of the passwords visable in the source code, this means that by using an md5 decrypter they can get the passes in less than 1 min.
this isnt a wind up, its not a fiction doing the rounds its fact.
i can only suggest you do this as i myself have had it happen already, but i was prepared with backups.
if it hasnt been done i suggest this forum and database is backed up as soon as possible.
in the past two weeks a lot of sites have gone down due to a very nasty iframe attack thats doing the rounds.
it has hit several of the dewtailers websites that advertise on detailing world, which led them to back theirs up, same with most of the other car based sites, and general websites.
my website was also compromised by this as well.
if the staff here do a search on yahoo or google for iframe attack, you will see that its gotten very bad this past fortniht and many sites are being hit as it progresses down the search engines and links etc.
the ifram attack isnt a virus is html code thats been absfucated in iframe and turned into java code, it then is able to get in through the backdoor so to speak as a java update or applet etc, and your sites and servers dont pick it up as there is nothing in the code, however in the code is a html script addon that adds itself to the main html scource for the m,ain page of the website, this then auto loads jave on opening the main page and will download the java trojans from the link site.
if this happens you need the backup to over write everything, prior to doing this you need to check the server logs and the authentication logs to see where it came in and patch the ports and also you will need to change the passes in some cases as it makes the md5 encrytion of the passwords visable in the source code, this means that by using an md5 decrypter they can get the passes in less than 1 min.
this isnt a wind up, its not a fiction doing the rounds its fact.
i can only suggest you do this as i myself have had it happen already, but i was prepared with backups.
read up and get it backed up now!
http://www.realtechnews.com/posts/5512
http://www.scmagazineus.com/IFRAME-attack-impacting-thousands-of-trusted-websites/article/107999/
http://www.zdnet.com.au/news/security/soa/iFrame-attacks-Blame-your-Web-admin-guy/0,130061744,339286892,00.htm