Now, I have to admit that it has been a little while since I’ve looked at the redirect log on any of our Joomla 1.6 website but I just had a little peak into one a few minutes ago and noticed a huge list of automated hacking attempts! All coming from the same location over the course of a few days and then repeated attempts a few months later.
It wasn’t a direct hack but it was obvious from the list that it was an automated script looking for particular components that might have been installed on the website to exploit.
What is the best thing to do in this situation?
- Find the IP address of the referring website and blocking. Either blocking it with IP address with a .htaccess block, using a extension like RSFirewall or blocking the IP on your hosting environment using CSF (that should protect all yours sites on your server).
- Have a look at some of your extensions and see if they’re on the list. It might take a little bit of time but you’d need to figure out how potentially that component is being exploited. (Security vulnerability, spam attacks). It might be a good time to upgrade those extensions if possible.
- Tell the Joomla community about the probe into your website and help others avoid being hacked.
Good luck securing your Joomla websites everyone and please let us know if you have other tips to block scripted attacks.
Author : Peter.Based in Sydney, Australia, Peter is a developer, online marketer and entrepreneur owning and running many businesses and web sites around the web.
Subscribe to this comment's feed
May.20
