MyBB Community Forums
webiste got hacked by a backdoor - Printable Version

+- MyBB Community Forums (https://community.mybb.com)
+-- Forum: 1.8 Support (https://community.mybb.com/forum-175.html)
+--- Forum: Security Management and Support (https://community.mybb.com/forum-179.html)
+--- Thread: webiste got hacked by a backdoor (/thread-224559.html)



webiste got hacked by a backdoor - Authority - 09-08-2019

so basically a dude that ik used a backdoor in mybb and uploaded a new index file to my site to the domain redirected to p**nhub instead of the actual forum. he also managed to delete all forum files. he had no admin access and neither did he have any of my paswords. he used some backdoor and I had to redo everything again. anyone know how i can prevent this from happening again?


RE: webiste got hacked by a backdoor - KimChoJapFan - 09-08-2019

Did he also manage to delete the access logs, if not then you can check those out and see if there are any strange queries from around the time you noticed the site got backdoored.

This will determine if the vulnerability was in the MyBB code or in a vulnerable plugin that you had added to the forum.


RE: webiste got hacked by a backdoor - Nathan Malcolm - 09-08-2019

Very doubtful that he "used a backdoor in mybb". Considering the fact you're asking how to prevent it from happening again instead of requesting the team fix this alleged backdoor, it sounds like you don't know how it happened.

If you're going off his word, perhaps consider that someone malicious enough to destroy your forum might also be a liar.


RE: webiste got hacked by a backdoor - Ashley1 - 09-08-2019

Sounds like he used the frontdoor instead of a backdoor.


RE: webiste got hacked by a backdoor - vintagedaddyo - 09-08-2019

Just a thought while enjoying some cookies, but perhaps look at your server and or any possible human related issues that may have compromised your security details and any potential issues found there first rather than assuming mybb as the potential initial culprit. Best of luck.


RE: webiste got hacked by a backdoor - NoRules - 09-08-2019

Hi,

(09-08-2019, 02:51 PM)Authority Wrote: anyone know how i can prevent this from happening again?
https://docs.mybb.com/1.8/administration/security/protection/

(09-08-2019, 06:30 PM)vintagedaddyo Wrote: Just a thought while enjoying some cookies

Cookies....., yummy!


RE: webiste got hacked by a backdoor - 0xB9 - 09-15-2019

Did this dude you know ever have access to your FTP client or web hosting CP? Sounds like he uploaded a web shell, not a flaw in MyBB.


RE: webiste got hacked by a backdoor - Ben Cousins - 09-15-2019

(4 hours ago)0xB9 Wrote: Did this dude you know ever have access to your FTP client or web hosting CP? Sounds like he uploaded a web shell, not a flaw in MyBB.

If he has access to the FTP, it's not a web shell. It's as easy as uploading a new index file with header location in it.