Webmasters- beware. This happened to me and to some friends in the business. There's a nasty worm out there that's working as a TCP sniffer. It can exploit a hole in Adobe Player software- Flash and Acrobat and gain entry into your FTP software on the local machine. It then steals user names and passwords which are quickly used to place malicious code on html,php and js files.
The objective is spam redirects using unknowing web sites. Of course google Chrome can spot the malware and will warn you.
The bad code is pretty easy to spot- look for stuff like ggfoislarifxzoa..iliff.ru in an iframe.
If you do find yourself infected delete your ftp client if possible, clean the websites, don't forget js files- easily overlooked, and change all passwords- make sure they are strong with caps and % etc.
Your anti-virus software won't pick up the core worm on your local machine.
Re-installing the O/S is an option, but of course a complete pain.
But always using encryption on any transfer and not leaving FTP open when not being used works pretty well
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment