Post by uglyuglyrain » Fri Jul 31, 2020 10:16 pm

HI my store just got hacked last two days.
just head up if any one never anyone see this kind hack before ?
first i notice there some random order payment charges to my paypal.
I check my store, it was ordered with $10 gift card voucher. paid with fruad cards with fake address and names.
those i understand, but the thing i dont understand how they did it.
i have gift voucher disabled, and how did they still order it ?
and paid $10 for no item
i will upload more screenshots.

Attachments

h3.JPG

h3.JPG (130.29 KiB) Viewed 2526 times

h2.JPG

h2.JPG (93.75 KiB) Viewed 2526 times

h1.JPG

h1.JPG (52.1 KiB) Viewed 2526 times


Newbie

Posts

Joined
Fri Jul 31, 2020 10:08 pm

Post by johnp » Sat Aug 01, 2020 1:36 am

I've not seen this one but have seen others. You've probably had an SQL injection attempt get through. I always use Ninja Firewall and Cidram on my OC sites. True they're not official addons/extensions but they've saved my sites. Ninja Firewall blocks SQL injections. Cidram blocks traffic from known bad sources.

Others will have their own idea of site protection but those are my two must haves on any OC site.

Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk


User avatar
Active Member

Posts

Joined
Fri Mar 25, 2011 10:25 am
Location - Surrey, UK

Post by Burt65 » Sat Aug 01, 2020 7:53 am

uglyuglyrain wrote:
Fri Jul 31, 2020 10:16 pm
HI my store just got hacked last two days.
just head up if any one never anyone see this kind hack before ?
first i notice there some random order payment charges to my paypal.
I check my store, it was ordered with $10 gift card voucher. paid with fruad cards with fake address and names.
those i understand, but the thing i dont understand how they did it.
i have gift voucher disabled, and how did they still order it ?
and paid $10 for no item
i will upload more screenshots.
RE: Random Order Payment Charges to your Paypal.

Paypal does instant checks (like most banks) and it normally doesn't allow flagged cards
If the name doesn't match the card and or the number and the CVC code, that's where your story ends!

2) You say you don't offer gift voucher, and yet you advertise them in your About US page...

3) Your checkout page doesn't offer Paypal payment as an option!?!?

Don't take this personal but, I smell Bullshit... Perhaps SimpleGlassPipe.com got smoked more than hacked.. :laugh:

Attachments

Bullshit.jpg

Bullshit.jpg (133.34 KiB) Viewed 2482 times


Over 95% of all computer problems can be traced back to the interface between the keyboard and the chair...


User avatar
Active Member

Posts

Joined
Mon Nov 18, 2013 3:23 pm
Location - Oz

Post by JEfromCanada » Wed Apr 14, 2021 12:20 pm

I just found the exact same thing on my site. Same $10 voucher with fake names. Just starting to go through sales to see if any "returns" were processed against my paypal account. Definitely not BS. Fraudulent vouchers started appearing Feb 24/2021 and continue until today. Will need to investigate.

New member

Posts

Joined
Thu May 23, 2013 1:49 am

Post by johnp » Wed Apr 14, 2021 11:56 pm

JEfromCanada wrote:
Wed Apr 14, 2021 12:20 pm
I just found the exact same thing on my site. Same $10 voucher with fake names. Just starting to go through sales to see if any "returns" were processed against my paypal account. Definitely not BS. Fraudulent vouchers started appearing Feb 24/2021 and continue until today. Will need to investigate.
Get a firewall and bad traffic blocker on your site asap. All my OC sites have both. They may not be the ideal solution but they are quick to set up and offer some help.

Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk


User avatar
Active Member

Posts

Joined
Fri Mar 25, 2011 10:25 am
Location - Surrey, UK

Post by Cue4cheap » Thu Apr 15, 2021 5:13 am

uglyuglyrain wrote:
Fri Jul 31, 2020 10:16 pm
HI my store just got hacked last two days.
What OC version? What extensions do you have installed?
Might help to know so it points to core or extension as the issue.
Mike

cue4cheap not cheap quality


Expert Member

Posts

Joined
Fri Sep 20, 2013 4:45 am

Post by EvolveWebHosting » Wed May 05, 2021 10:54 pm

Unfortunately many sites are hacked and most site owners are not proactive in keeping their site protected. A monthly fee for a firewall and malware scanner is a much smaller price to pay vs. ransomware and reputation damage. We assist many customers with this issue, who either do or don't host their websites with us.

Some steps you can take in addition to a firewall:
1) Make sure your software is all up to date
2) Use strong and unique passwords for every login (admin area, database user, FTP, cPanel, etc)
3) Try not to email your passwords to others and if you need to do that, change them after the person is done using it

Here's an article with more tips on sharing your passwords: https://www.evolvewebhost.com/blog/ways ... ign=219285

2 Week FREE Trial of our Shared Hosting plans (DIrectAdmin or cPanel) for new customers
2 Week FREE Trial of Astra Firewall and Malware Scanner
Visit our website for full details and to start your trial today - www.evolvewebhost.com


User avatar
Active Member

Posts

Joined
Fri Mar 27, 2015 11:13 pm
Location - Denver, Colorado, USA

Post by Kelley8563 » Fri Jun 04, 2021 12:26 pm

My site seems to have been hacked with some odd files deleted, also seen that admin/index.php has also been changed Bottom line - I doubt there is is much you can do if someone really wants to hack OC. I'​ve never had any issues with them until last year around October.

walgreenslistens.com
Last edited by Kelley8563 on Tue Jun 08, 2021 7:42 pm, edited 1 time in total.

Newbie

Posts

Joined
Fri Jun 04, 2021 12:24 pm

Post by johnp » Fri Jun 04, 2021 8:09 pm

Kelley8563 wrote:
Fri Jun 04, 2021 12:26 pm
My site seems to have been hacked with some odd files deleted, also seen that admin/index.php has also been changed Bottom line - I doubt there is is much you can do if someone really wants to hack OC. I'​ve never had any issues with them until last year around October.
Since I started adding Ninja Firewall and CIDRAM bad trafic blocker to my sites I've had no problems. For me they're both now must haves on every OC site I set up or manage.

Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk


User avatar
Active Member

Posts

Joined
Fri Mar 25, 2011 10:25 am
Location - Surrey, UK
Who is online

Users browsing this forum: No registered users and 94 guests