homepage Welcome to WebmasterWorld Guest from 54.145.252.85
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member
Home / Forums Index / WebmasterWorld / Professional Webmaster Business Issues
Forum Library, Charter, Moderators: LifeinAsia & httpwebwitch

Professional Webmaster Business Issues Forum

    
Plesk Interface has been compromised
Client using Plesk sever has been infected.
bwnbwn

WebmasterWorld Senior Member bwnbwn us a WebmasterWorld Top Contributor of All Time 5+ Year Member



 
Msg#: 4474139 posted 2:07 pm on Jul 10, 2012 (gmt 0)

I have a client that had a number of sites infected on a dedicated server. At first I thought is was some coding issues but not being able to find the entry point the client changed some coding on the infected site. This client has about 80 or so websites on their server.

More of the sites became infected in different folders all were .js folders with redirects to a downloader. I stopped the ones infected in IIS until we could figure out what was going on.

The host came back and said it looks like the Plesk interface has a weakness that is the entry point. Doing some research it looks like many other host using Plesk have also been hit.

Thought I would post this so others using Plesk can check their sites and make sure if there is a patch get it updated ASAP.

I am moving the client to a new server and doing away with plesk interface.

 

rocknbil

WebmasterWorld Senior Member rocknbil us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 4474139 posted 4:06 pm on Jul 10, 2012 (gmt 0)

Yeah we had a couple attacks like this. Update, upgrade . . . . WHM/Cpanel is just as vulnerable if not more so, it doesn't matter what you use, you just have to be vigilant.

bwnbwn

WebmasterWorld Senior Member bwnbwn us a WebmasterWorld Top Contributor of All Time 5+ Year Member



 
Msg#: 4474139 posted 5:33 pm on Jul 10, 2012 (gmt 0)

I don't have anything to do with that end with this client they didn't want to pay me for this. After this they have added my fees to help maintain the server side end so at least it helped me add to my income. :)

robzilla

WebmasterWorld Senior Member 5+ Year Member



 
Msg#: 4474139 posted 10:04 pm on Jul 10, 2012 (gmt 0)

Control panel-free for about 6 months now, highly recommended :-)

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / WebmasterWorld / Professional Webmaster Business Issues
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved