A few weeks ago one of my forums was hit by malware and Google flagged it which decimated traffic to the site.
A little later Google Webmaster tools provided me with information on which files had been compromised, namely clientscript/vbulletin_menu.js (I think).
Yesterday the site was hit again with the file clientscript/vbulletin_global.js compromised, and once again Google flagged the site with a Malware alert which wiped out traffic numbers to the forum.
I'm kind of scratching my head over how these files are being changed and although I've done a search on here for the same problem I've not located the same issue.
It's one thing to keep uploading clean files, but to have to keep cleaning up the damage is very annoying
One question that comes to mind is how can the files be altered without the need for the username or password to the server or forum? I also set-up an additional layer of protection for the admin files via the cPanel but apparently there is still a vulnerability.
BTW, I seem to have misplaced the link provided by Wayne Luke some months ago regarding protecting forums from hacking/malware issues for which I implemented many of the recommendations made.
A little later Google Webmaster tools provided me with information on which files had been compromised, namely clientscript/vbulletin_menu.js (I think).
Yesterday the site was hit again with the file clientscript/vbulletin_global.js compromised, and once again Google flagged the site with a Malware alert which wiped out traffic numbers to the forum.
I'm kind of scratching my head over how these files are being changed and although I've done a search on here for the same problem I've not located the same issue.
It's one thing to keep uploading clean files, but to have to keep cleaning up the damage is very annoying
One question that comes to mind is how can the files be altered without the need for the username or password to the server or forum? I also set-up an additional layer of protection for the admin files via the cPanel but apparently there is still a vulnerability.
BTW, I seem to have misplaced the link provided by Wayne Luke some months ago regarding protecting forums from hacking/malware issues for which I implemented many of the recommendations made.
Comment