Wow.
I was alerted to a problem on my client's website this morning whereby someone named EJDER, JeXToXiC or Alemin_Krali (not sure which) apparently managed to write the same set of files into every folder on my client's website. Each and every file is exactly the same with the exception of the Error.txt file which reads "Sorry, your application has crashed on unload. Please check your app for errors."
The rest of the files are named such that they'd overwrite all the standard default start pages used by Web Servers - default.asp, .cfm, .htm, .html, .php, index.asp, .cfm, .htm, .html, .php.
So this is kind of funny, and I get on the horn with my service provider to let them know what happened. I get the files replaced with temporary stuff until I can get the problem fixed. Then I started looking at the files themselves. Whoever the jackass was that did this decided he/she would use Microsoft Word to write the "Hacked" notice. And they didn't even take the time to remove the extraneous crap from the files. Nice job guys. I thought hackers at least had some HTML skills. I mean come on guys. If you're going to "hack" my site (if that's what you call it), please have the decency to use something other than word to create your pages. Geesh.
Monday, March 31, 2008
Subscribe to:
Posts (Atom)