Bastards got me but I had /admin/ locked down so maybe they had troubles doing much I don't know. I see the rougue user added 4-14 but no evidence of any malware being served yet. Having to do a full audit now.
Quote:
Originally Posted by Cleo
I followed all the above steps.
I haven't been hacked.
This step lost me though
"3. Replace the www/admin/dashboard.php file with the one in this archive so as to not break the login process."
|
I think it means rename/remove the existing dashboard.php file and then download the dashboard.zip file they link to, unzip it, and put that in the place of the old dashboard.php file. You have to go to the original announcement to get that file.
Edit: Here are some more technical details about the hack I found interesting
http://www.infosecstuff.com/openx-cs...ely-exploited/