Loaded Commerce Community

Banner

View unanswered posts | View active topics


Board index » Loaded Commerce Support » Security Issues

All times are UTC - 5 hours




Post new topic Reply to topic  Page 1 of 1
  [ 3 posts ] 
  Previous topic | Next topic 
Author Message
hugosnel
 Post subject: unauthorized Top Administrator created !
PostPosted: Fri Aug 27, 2010 6:41 am 
Offline
CRE Newbie

Joined: Tue Mar 09, 2010 9:13 am
Posts: 2
I have an unauthorized Top Administrator created in my creloaded shop!
I can see in the logs what actions he took:
A complete copy of the dbase was created and downloaded!
I do have the system log and the used IP.
How can this account have been created?
What can do to better protect the shop?
TIA
Hugo


You do not have the required permissions to view the files attached to this post.

Top
 Profile  
 
simplesurfer
 Post subject: Re: unauthorized Top Administrator created !
PostPosted: Fri Sep 03, 2010 10:31 am 
Offline
CRE Talented
User avatar

Joined: Fri Mar 31, 2006 1:00 am
Posts: 496
please detail your version of :

what cre software (what patch) are you using?
MySQL version?
Server software?
host?
how many people have FTP keys?
how many people have admin keys?
have you hired any one sketchy to work on the site
where did the IP trace to ? (country)
do you know any one there?
is your configuration.php file permissions set properly?
did they access FTP?
do you store customer CC#?


dude... i hate to tell you this...but my experience is.... once the site goes to the dark side..... it doesnt come back. its a never ending cat and mouse game. (this is just my experience, i truly hope yours is dif)

id go download the latest patched stock possible...then migrate over your template and SOME of your database tables if your desperate for them.

once they have the keys, there are so many ways to reopen your site.
Top
 Profile  
 
jlittle888
 Post subject: Re: unauthorized Top Administrator created !
PostPosted: Sun Sep 05, 2010 10:38 pm 
Offline
CRE Newbie

Joined: Mon Jul 19, 2010 5:05 pm
Posts: 4
:oops: I too have been compromised ... more than once! This last time, "they" activated the "Credit Card CCV" module, which I don't use.

Main question is: How do "they" get access to my system and create a Top Admin account? Where is the hole? Where do I start looking? Their is only one person with the access to this site.

I have been breached by an IP address from Russia, Turkey and US. My current version is a heavily modified "White Label" version 1.0. I have not been able to apply any patches or updates because the person that we got this from said that there are too many modifications that it would take forever to update what we have.

We have purchased the latest version from CRE Loaded on June 19, 2010. We have now moved our attention to change over to this latest version and hope that things will clear up, but in the mean time if anyone with a suggestion on how stop these attacks will be greatly appreciated!

BB
Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 3 posts ] 

Board index » Loaded Commerce Support » Security Issues

All times are UTC - 5 hours


Who is online

Users browsing this forum: No registered users and 1 guest

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
It is currently Thu May 24, 2012 8:55 am
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group

Main Menu

Login

Forums Latest Activity

Top Listing

1. Cart2Cart - Shopping...
    Category: Shopping Cart Database Conversion Scripts
    
2. Points & Rewards PLUS!...
    Category: Add-Ons
    
3. Configuration Server...
    Category: Fixes
    
4. Credit Card with CCV
    Category: Payment Modules
    
5. CC7333_ATS
    Category: Templates
    
Show more...

© CRE Loaded is a product of Chain Reaction Ecommerce, Inc. Usage & Privacy Policy