zencart报高危漏洞,ixwebhosting首先告警并处理完毕

我们收到美国ixwebhosting公司告警，zencart报高危漏洞，成为黑客攻击目标。ixwebhosting帮助我们的客户检查，扫描并处理了漏洞和攻击，这样的服务，客户也很满意，向该公司致谢。






Zen Cart application has recently become a rising target for hacking attempts and attacks. Using known exploits of outdated installations, people are uploading and executing malicious code into the victim website.  These malicious injections allow them to steal passwords and private information from people visiting your site, they also spread malware and viruses over the Internet, turn sites into blackhat SEO doorways as well as many other unfortunate things.


It has come to our attention that one or more of your sites hosted with us with a Zen Cart application has recently became a target of a hacking attempt and we regret to inform you that the attempt was successful. It allowed the attacker to upload a set of hacking tools to your website and possibly use it for malicious purposes. To prevent this and any further damage, we proceeded with the following steps:
1. The admin area of your Zen Cart application has been password-protected. You may find new password in the text file located at .zenprotect/pass_plain.txt in your FTP root folder. We recommend downloading this file and erasing it from the server ASAP. If you'd like to change password later, you can use corresponding feature of the WebShell FTP file manager. Note that you will still need to use your old password to access Zen Cart admin area after passing through webserver's password prompt.
2. We scanned your account and cleaned up all known patterns of hacker tools. This should not affect any valid code and pages in any way.

大意：

zencart最近成为黑客的攻击目标，用早期的几个漏洞，他们上传一些可执行的恶意代码到受害者的网站， 然后偷密码，访客的私人信息，还开后门，加链接等。


你的网站受到了攻击，非常遗憾，我们发现攻击是成功的。我们已经采取了以下步骤阻止和防止类似事件

1  管理区被密码保护。

2 我们扫描并清理了所有已知的黑客工具，代码，应该不会影响你的网站正常功能。

顶