I just found out today that LastProxy.com was hacked. I updated the code last night to optimize for Adsense and things worked beautifully. But this afternoon, I checked on the scripts and found out that both of the proxy scrips stopped working! I FTP to the site and found out that the scripts were removed permissions and hacked by adding ‘exit 0′ at the beginning. To tell the truth, I’m quite shocked.
First of all, I don’t know why anyone would spend time to hack into the scripts. I mean what’s the point of doing so? Secondly, I am very surprised to see someone actually got access to the scripts’ sources. The scripts should always be executed like usual, and how does that person have the permission to write back to the server to add the exit code to both the scripts.
I called 1and1’s support number (contrary to some people, I alwasy get to talk to a live person within 3 minutes and the guys are very, very helpful and nice too). It’s against their policy to change customer’s files. So I know they didn’t go into my site and hacked it. Then someone else got to get in and did it. I checked on the SSH logs and FTP logs, it seems that everything was clean. Very strange indeed.
Well, I’ve wrote 2 posts on Sitepoint forum to see if other people have encoutered something similar. Let’s see what is actually going on. Meanwhile, I’ll be monitoring constantly the site for any sudden changes. And yes, I’ve backed it up, thanks to whoever hacked my site.
You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.
Subscribe in a reader. Enjoy reading my blog? Subscribe to my RSS to read new post whenever I publish something new.