Yesterday as I was making some development to an upcoming project for TheWebmastersCafe.net, some of my websites have been defaced by ZorroKin. He used a VHCS2 exploit to create an admin account on the control panel and then he created himself a few FTP accounts to deface some areas of my websites.
Fortunately I had been lucky enough because he could have done a lot more damages. Going through my log files, I have been able to track pretty much everything he’s done and as I noticed the intrusion early, I’ve banned his IP on my firewall. I know it’s not that hard to get in using another IP but anyway it may have given me a few minutes to react to the attack.
I had been a bit lazy lately as I knew I had to replace my outdated VHCS2 control panel by something a lot better but I always pushed that back. So now I guess is a good time to do it because even though I tracked what he as done on my server, I can’t be 100% sure he doesn’t have an access anymore. You can get more information on the VHCS exploit here and you can get the VHCS security patch here.
I just got myself a brand new VPS with cPanel and I am moving all my websites to the new server so updates to TheWebmastersCafe.net may be a little slow this week.
Top Commentators