Page 1 of 1
Search found 8 matches
Re: Check out fraud card website hack
Well in my opinion somehow he injects the script somewhere at the registration stage. I believe the system should automatically avoid ruining script commands in the input fields, so when like someone like this guy, try to send scripts it should't obey, just simply get it as a text, nothing more. Lik...
Jump to post- Wed Jun 28, 2017 3:13 am
- Replies 14
- Views 8569
Re: Check out fraud card website hack
Well it seems this trick not exactly works out, as we had the hack today as well after two days of silence. The interesting thing, we perhaps catch the attacker, as he made a registration on our site just before the script was inserted to the tpl file and all the details was fake like hell. He/she p...
Jump to post- Tue Jun 27, 2017 7:25 pm
- Replies 14
- Views 8569
Re: Check out fraud card website hack
So I changed now to 444 and let see. I will come back with an update on this tomorrow. Strange, because today still we didn't had the attack. So if it's a virus, someone need to trigger it, or the bot turns off and it goes for holiday on the weekend :) How ever, its strange! and I really amazed with...
Jump to post- Sun Jun 25, 2017 5:07 pm
- Replies 14
- Views 8569
Re: Check out fraud card website hack
and let say I upload the new OC, is enough only to replace the config.php in order to make the old data work?
Thanks anyway for you patient and help! 
- Sun Jun 25, 2017 4:29 am
- Replies 14
- Views 8569
Re: Check out fraud card website hack
Sorry, so what I try to say, this where they placed it : \catalog\view\theme\default\template\checkout\checkout.tpl Not over here \system\storage\modification\catalog\view\theme\default\template\checkout\checkout.tpl I'm not exactly sure what I need to look for in the DB. How can I spot the unwanted...
Jump to post- Sun Jun 25, 2017 4:25 am
- Replies 14
- Views 8569
Re: Check out fraud card website hack
This is the default template what we using for the website. So the first option, you mentioned. We changed many times all the password, users for the admin, for the ftp, we changed the the user , permissions for 644, but this still happens. The OS is not from any dark web related site neither from a...
Jump to post- Sun Jun 25, 2017 2:10 am
- Replies 14
- Views 8569
Re: Check out fraud card website hack
What I could find out it seems a code injection hack. Basically somehowe they edit \catalog\view\theme\default\template\checkout checkout.tpl file and insert this code : <div id="content" class="<?php echo $class; ?>"><?php echo $content_top; ?> <h1><?php echo $heading_title; ?><...
Jump to post- Sat Jun 24, 2017 10:59 pm
- Replies 14
- Views 8569
Check out fraud card website hack
We have a website selling our own product and recently we have a problem, someone come and change the check out every morning around 6 am the for a fake fraud card site, what basically ask our customers to add card details. ( https://iwetech.ie/Payment/ ) We found the code and we can change it back ...
Jump to post- Sat Jun 24, 2017 3:30 pm
- Replies 14
- Views 8569
Search found 8 matches
