Site hacked - need help ASAP

We encourage users to post events happening in the community to the community events group on https://www.drupal.org.
sbgranny's picture
Posted by sbgranny on March 27, 2014 at 10:17am

My Drupal site has been hacked. I am seeking a consultant to help me get my site back up.

Comments

what has happened and what

Posted by thomaske on March 27, 2014 at 12:13pm
thomaske's picture

what has happened and what condition is yous site in?

tk

my site

Posted by sbgranny on March 27, 2014 at 4:42pm
sbgranny's picture

I had unknown php files added to my site. I got a Google Chrome error screen when I tried to log into Drupal on my site. My site is back up now. I restored the files to a few days previous and restored the database to a good copy I had on my Mac.

I am looking for someone to help me with maintenance on my site.

Email:

Posted by marty.true on March 27, 2014 at 4:51pm
marty.true's picture

Email: WeCanHelpYou@x-staticmediagroup.com and give a link to your site and I will look it over for you and offer whatever help you need.

Marty

Happy to help

Posted by marty.true on March 27, 2014 at 12:38pm
marty.true's picture

PM me with your URL and I'll take a look and try to help you.

Maybe install the hacked mod?

Posted by Bowevil on March 27, 2014 at 4:56pm
Bowevil's picture

https://drupal.org/project/hacked

The "Hacked!" module is to

Posted by marty.true on March 27, 2014 at 5:11pm
marty.true's picture

The "Hacked!" module is to show what contributed modules and Drupal core files have been "modified" from their original state, not really made to investigate actually being hacked by an outside, malicious effort.

File Permissions

Posted by mark_schaal on March 27, 2014 at 6:25pm
mark_schaal's picture

A few things:

Make sure all of your file and directory permissions are configured appropriately (Directories - 775, Files 644)

Ensure that your uploadable file systems are configured appropriately (/sites/default/files - 775 with .htaccess, /[path-to-private-files] - 775 with .htaccess configured)

Ensure that you are on the latest Drupal core (7.26) and apply all .htaccess updates

Additionally, read through your apache logs to see when access occurred and whether additional system level files were added to your infrastructure without your knowledge (cron jobs, etc.)

Florida

Group organizers

Group categories

Florida Topics

Group notifications

This group offers an RSS feed. Or subscribe to these personalized, sitewide feeds:

Hot content this week

See all hot content.