Ever Been Hacked? Just happened to me :/
 

Fucker from Georgia bruteforced me and deleted all my accounts on my whm and backups :/. I had 3 adult sites and 4 product sites and alot of random sites. Also had my school final was on that server that's due later this week. How do you biggerboys deal with this shit? :Oh crap:Oh crap:helpme

I would contact my host immediately.

that sucks man.

Didn't you have offsite backups? Maybe your host has a backup?

No didn't have offsite backup. I talked to my hosting and everything :(. Shit sucks, gonna be working on all my sites for spring break instead of going to the beach and getting fucked up :Oh crap:Oh crap:Oh crap

bruteforced? man then i am sorry to say but lesson learned. also deleted server and also backup ... another lesson learned, do not put the same password on important places. welcome to the internet

myabe archive.org has a copy? Or google cache?

hopefully you have files on your computer, or can get images from the designer? etc?

Yeah man! I use same password for all my cpanels too :/. Lesson learned indeed

another thing is, if you are bruteforced, it is targetted attack, so someone have been looking for datas, or it was a reaction for something. if he will be looking for data, he will leave server as it is. server deleted means it was reaction for something. or there is new hackers "timewasters"

Blows. Been there more than once. Just tell your teacher a hacker ate it? lol

Do you have cPanel? Either way I'm sure your hosting has some kind of backup method, you have to make sure you download a regular backup. Any time I make a major update or just do anything on my hosting that I wouldn't want to have to do again, I make sure I create and download a backup.

I leave the latest 1-2 backup files in my main hosting directory, I also keep the latest 2-3 backups on an external hard drive, and at least a couple of the latest ones on the main hard drive for my laptop. Just in case any of them are corrupted.

Edit: as suggested, check archive.org, you might not get everything you want but that site has saved my ass a lot of time more than once.

Yea it was cPanel :/

By avoiding shitty hosts.

I work on my websites on my computer...and then upload the files to my host...so I always have a copy. It takes longer to update though. I also burn copies or transfer my webs folder to scan drive. good luck

:/ I will get a dedicated once I learn how to manage everything myself. I'm very noob to this hosting and server stuff

Which is even more reason to get a good server with a host that offers full management. :error

Stick to what you are good at and what makes you money. Leave the hosts and server techs to handle that part of your business. Your not utilizing your time right as it is and now its even gotten worse.

Just my :2 cents:

Sorry to hear about this though. :\

No, if you manage yourself you're gonna get owned again.

Go with a good company that offers full management.

Before i moved to natnet i was hacked badly lost about 70% of my income from my traffic sites because of it, never seemed to recover after that. Natnet helped me sort my sites out and get them back in working order but never had the same sales/traffic again.

Natnet rocks

This has no relevance to someone getting hacked. I know only of one company that can say this. If i told you to name them, i'm pretty sure you'd be wrong.

Well i dont do backup on my servers,but again my servers are well secured since i dont use insecure shit like whm and apache.

When you want the BEST go with NatNet, I had all my domains stolen so I moved to NatNet and I know 100% that will not happen again.

You should never be brute forced....

I would take steps to secure your own boxes. To protect against brute force on a server level, if you're running *nix... I recommend R-fx Network's free:

http://www.rfxn.com/projects/

APF (Advanced Policy Firewall)
BFD (Brute Force Detection)

Installs in minutes with good install files to help you get it done :) Anyone with basic *nix skills can do this in a matter of minutes.

passwords usually dont matter... I had my whole box and all sites hacked by a Palestinian group over a year ago, rewrote all my sites with anti Israel stuff and dead babies

yep Iv been hacked as people on here already know..Always keep a hard backup of everything on a computer cause it dosent matter how secure you think your shit is, there is always a way round it.

Always, always, always keep offsite backups. Just get a (couple) external HDs which serve no other purpose but to backup your sites. Data is another thing but if your data isn't changing very often, DB backups of 2-3 weeks is usually fine. In the worst case, you lose some data but not the entire site.

$6 for top of the line offsite backup in a highly secure data center - we're even getting ready to
open the second facility in the underground nuclear bunker:
https://www.bettercgi.com/clonebox/

I actually use CSF/LDF combo which also prevent scanning and hacker attempts plus stop bots and ddoss attacks,but csf sometime goes wild and can either block your own ip from accessing or even total server traffic.

oh dude....its really awful been deleted :(

Thanks everyone. Yea I really learned my lesson and now I'm gonna get a couple of EHD's >_>

WHM has a bruteforce detector built in. Also you should do manual backups to your pc and off site backups as well. Other then that just make sure you aren't running insecure scripts or using crappy passwords and you will be fine most of the time.

that detector is disabled by default.

:2 cents:

Hmm.. clonebox looks interesting!

Agreed. Anyone using it currently?

i haven't experience being hack. but i know it is really an awful experience. it is necessary to have backup at all time.

Random post

- Firewall ( like http://configserver.com/cp/csf.html )
- Change your ssh port from 22 to any other thing ( reduces the attempts )
- change the default login name of WHM from " root " to " gtdsiOph " or similar .. ( after all, why give away the first half of the login )
- use a unique root password meaning nothing : random upper - lower cases with numerical and characters . Change it every 30 days
- do the same for Cpanel/Ftp
- Configure your backup drive to unmount once the backup is done ( prevents the b.u. to be wiped ).
- check logs for some nasty shell scripts such as r99 and c57 . Check for root kits.
- Check your PC for trojan ( sniffers, keylogger, etc ..)

and so on . :2 cents:

bad host sounds like

a bit odd that you also just posted this: http://www.gfy.com/webmaster-q-and-fuckin-a/959148-hosting.html

oh shit! :Oh crap

those "i need hosting" threads should be moved to a spam section. same salesmen whores post the same thing every time. they probably just watch for those threads. anyone posting a new "i need hosting" thread is just too lazy to use SEARCH and should be banned.

regarding hacks, u are better off not using a cp. just configure a server manually. then they have to hack ssh to make a change. not impossible but adds difficulty. nothing is hackproof tho.

People are such dicks.


Sabby:)

my server is pretty secure i hope and i dont have much on it anyway that cant be replaced.

Most annoying fuckers I have had lately is having my yahoo msgr hacked. Found a program to cure it.

Bowing to the programer GODS...


Sabby:)

dude, too sorry to hear that

.
 

I love the fact that I'm in school for computer science/engineering, it all pays off.

i have a great story... brb.


Sabby:)

what a signature papill0n...

Absolutely. I'm a big do it yourself person - I do my own car repairs, including replacing
engines, and all kinds of other DIY. Server admin, particularly when it comes to security, is
NOT a good place for DIY, though, not if the server is for your business.

We regularly have to educate hosts about what we consider to be fairly basic server admin.
Even those who have been doing it professionally for years have a LOT still to learn. It's NOT
something to learn a little bit in your spare time and do it yourself.