ImageVillage Posted September 12, 2015 Share Posted September 12, 2015 (edited) Not sure if you or anyone else is aware and i "DO" wish to alarm you ALL who use WHMCS. - Removed - is a known group of exploiters that have successfuly brought down many many many....i could go on and on and on.....websites. I myself have faced recent major attacks on my server and had clients experiencing extreme disruptions due to DDOS exploits and these people are causing unbelievable problems for service providers and website owners. What alarms me most is they are specifically targeting WHMCS using an openly available self-built tool to target WHMCS accounts, they create a user account which provides them access to write to your MySQL and then of course execute php scripts which will then try and root your account and take you down. The WHMCS exploit tool can be downloaded once you join the site, i WARN you now, do not mess with this stuff, do not download or register and do not be fooled into using any of this. You have to be extremely savvy when executing exploits or face prosecution....in USA this is a SERIOUS offense, yu HAVE been warned. Last night (11th Sept) we were notified of a new user account, fortunately within 2 minutes the account was removed and the IP blocked, this was a xxx account trying to exploit my WHMCS install. You may already be aware of this but if not i urge you to ensure your WHMCS is firstly up-to-date, you have regular back-ups of your site directory and databases and you check your registered users for any xxx account registrations. Some poor website owners have had to completely rebuild websites and move hosts, etc due to these clowns. Edited September 12, 2015 by Infopro No Need For Link Here. 0 Quote Link to comment Share on other sites More sharing options...
ImageVillage Posted September 12, 2015 Author Share Posted September 12, 2015 Infopro has removed the domain XXX Hacker They are a well known underground exploit group, i am shocked no-one from WHMCS has commented on this, be aware they are targeting! 0 Quote Link to comment Share on other sites More sharing options...
Infopro Posted September 12, 2015 Share Posted September 12, 2015 This is only one of who knows how many sites similar. It's not this particular site that matters really, its the users who have grabbed the scripts it serves up. Staying on top of best server security practices, keeping all software, WHMCS included, up to date is the only way to go. 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.