1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

XF 1.5 My Xenforor Hacked

Discussion in 'Troubleshooting and Problems' started by Servo, Aug 9, 2016.

  1. Servo

    Servo New Member

    Hy Guys,

    This is an emergency , someone ( I know who someone) hacked my Xenforo and has deleted my admin accounts from admin panel , the front page does not load try http://www.animebanter.com and when I go to Admin Panel it loads but my account is deleted

    further CPanel gives this error

    Internal Server Error
    500

    exit level [die] [pid=919] (Attempting to drop privileges to root.)

    So what are my options here ?
    and how did this happen?
     
  2. ŽivaAkcija

    ŽivaAkcija Well-Known Member

    contact your host
     
  3. Mike

    Mike XenForo Developer Staff Member

    If cPanel is failing as well, this seems like a compromise past XenForo. You are likely going to need to restore to a backup and potentially even build the server from fresh (with all different passwords, etc). This is something where you're likely going to need the help of a sysadmin/your host.
     
    StarArmy likes this.
  4. Servo

    Servo New Member

    I can login to CPanel now, and I can see my Xenforo files there ,Is there anything i can do here?
     
  5. ŽivaAkcija

    ŽivaAkcija Well-Known Member

    contact host again
     
  6. Mike

    Mike XenForo Developer Staff Member

    I'd really have to recommend rolling back to an existing backup. You should change all the passwords related to your site and enforce two-step verification for your staff or accessing the control panel at a minimum. You should audit who has access to your server or control panel and ensure only people you completely trust have elevated access.
     
    StarArmy, snowman and Amaury like this.
  7. adwade

    adwade Active Member

    As another (free) safeguard, I would recommend running Tripwire as well. If you don't mind spending a few bucks for some added peace of mind, I would recommend the DragonByte Security add-on too.
     
  8. Digital Doctor

    Digital Doctor Well-Known Member

    Title change: My server was hacked.
     
    adwade, empire and BobbyWibowo like this.
  9. Placid

    Placid Member

    It's easier to hack a CMS than an Os. Just saying..
     
  10. Digital Doctor

    Digital Doctor Well-Known Member

    Hmmmm ....
    There are ongoing vulnerabilities discovered on an ongoing basis for the last decade.
    I can't think of one exploited Xenforo vulnerability.
     
  11. Optic

    Optic Well-Known Member

    @Servo - seems you've moved away from XF for Dolphin? :(
     
  12. Placid

    Placid Member

    Who's to say there isn't any private ones?
     
  13. Digital Doctor

    Digital Doctor Well-Known Member

    Pas Moi.
     

Share This Page