Concerning lost whmcs install info

[tumble]

Is their anything we should do besides the obvious change passwords etc. Are there any back doors the installs that we need to be aware of? And If so how do we deal with that?

 

Thanks

Frank

[FlexiHost]

Can you be a bit more specific in your question here, which backdoors are you referring to?

[Lee3155]

I think he means if the downloads from whmcs have been compomised and are now infected.

 

Nope! The whole site was restored from a backup just before the attack so therefore all downloads and safe, original and secure like always!

[charlottezweb]

The backdoors he's referring to are rumors that there are undisclosed connections from whmcs or backdoor entries to our installs that may now be publicly available.

 

I believe I've heard the answer to that is no.

[panacheweb]

I believe how Matt and the team works, is they only upload the ioncube encoded versions to the server.

[Matt]

Our recent blog posts and emails are the best place to find recommended actions. We have been posting regular updates as and when information has become available. But specifically there are 2 key points you need to be aware of:

 

1. You should change all passwords and login details that you may have ever sent to us via support ticket

2. If you had ever paid us by credit card directly (not through PayPal), then we recommend notifying your card company to cancel and issue a new card

 

I can confirm there are no backdoors or secret passwords hidden in WHMCS installations. There are a lot of rumours around right now, many of which are untrue.

 

Matt