Web Security Question & Answer
DESCRIPTION:
I have a problem with web security!
I outsourced the creation of a simple website. A directory of Flash and Flex developers. Upon completion and launch 5 months ago, I now see warnings about security.
QUESTIONS – Please comment below the post!
- Do you see a warning when you arrive on the site? If so, what is your OS and Browser & Browser version? Any clues?
- What can I do to solve this problem?
- Is the problem with the CODE on my website? or is the problem with my web-host (i.e. not MY code)?
LINK: Check it out!
- The site with the security problem is here.
SCREENSHOTS
I still have no clue what’s going on!
any reference to “trafomafon.co.cc” in the source code of that page? looks like chrome is finding that site offending.
Hard to know, I would do a few things. Â 1) don’t have people go there. It may cause them to get viruses installed. Â 2) ftp in and look at the code, search for that traformafon.co.cc as that seems to be the script that was somehow injected. Â 3) determine if it was manually stuck in your html, or in your db.Â
if HTML then it is possible your web host was hacked and other sites ont hat server have same thing. This is more common then one would expect. Â If not host, then maybe your outsourced people had a keylogger and are comprimized, and now ftp is how the hacker got in? Â Change password regardless.
Restore your code from backup.  They are very good at hiding stuff.  Your host should have  backup.
If db, you have sql injection hole somewhere (most likely). Â Restore from backup, and fix hole asap.
Once the site is back to being ok, you can use google webmaster tools to let them know. Â
Hi,
I found information about this malware in google stuffs http://www.google.com/safebrowsing/diagnostic?site=trafomafon.co.cc/ , I’d notice that this erros occours in some websites.
As I saw you’re using wordpress in this website, I think that have some widget or plugin making this problem or a security failure.
Perhaps, should be an alien file that invaded ur server.
Do you have a backup you can revert to?