Comments on: Tracking And Stopping Web Site IFRAME Code Injection

By: Clint@voipbroadbandphoneservice

Clint@voipbroadbandphoneservice — Thu, 11 Mar 2010 16:35:46 +0000

In all of my troubleshooting experiences I always assume the worst and end up spending too much time looking for the hardest thing(s) for a solution. Each time I do it and am relieved to find out it wasn't as bad as I thought. I'm glad you were able to remedy the situation without taking my usual course of action. Congrats. Clint@voipbroadbandphoneservice's last blog post..Getting Started With VoIP

By: Joe

Joe — Tue, 05 May 2009 15:15:09 +0000

Daniel: My pleasure

Chris: Good passwords are always important, but in my case, I think it was the client’s computer getting a trojan on it that compromised their FTP password. In any case, good advice.

Planetdust: Ouch. I had one like that where I had to just wipe and rebuild my machine.

By: Planetdust

Planetdust — Tue, 05 May 2009 10:02:03 +0000

We’ve had the same problem over here, interestingly the only sites that were compromised were on servers where the FTP details were stored in FileZilla.

We’re still clearing up the aftermath of the attacks, WordPress blogs seems especially vulnerable (no surprise with it being opensource code I suppose) but we’ve also had problems with injections into controllers of the CodeIgniter framework too.

This is some particularly nasty stuff, one machine in the office had to be rebuilt after one of the injections opened up a PDF and took down Windows. Nice!

By: Chris

Chris — Sat, 02 May 2009 11:35:15 +0000

This same hack affect around 10 sites of ours as we will have 4 websites on the one server at a time. This hack was a real pain to deal with and in the end you just have to rely on a newly generated 12+ character password to try and top it from happening again.

By: Daniel

Daniel — Sun, 26 Apr 2009 21:17:01 +0000

Thank you for writing this article. After reading everything, I get the benefit.

Regard

By: Joe

Joe — Sun, 26 Apr 2009 20:24:14 +0000

Baba: Thanks. It’s fun when you can find the cause and frustrating when you can’t.

By: Baba

Baba — Sun, 26 Apr 2009 18:28:35 +0000

Well that's all way above me and what I know of computers. Great post and am so glad you were able to fix the problem. Baba's last blog post..I've Been Tagged With 8 Things

By: Joe

Joe — Sat, 25 Apr 2009 18:10:08 +0000

Mark: Thanks. It sucks when it’s not what I do for a living and I have to take time out of an already busy day to do it, but it’s still rewarding to track down the problem, right to the exact remote computer and get it resolved quickly for the client.

By: Mark Fulton

Mark Fulton — Sat, 25 Apr 2009 18:03:50 +0000

Nice work! Joe Tech to the rescue. Mark Fulton's last blog post..Great Deals on Quality .COM Domain Names