fbpx

Got hacked through JFBConnect

Got hacked through JFBConnect

Hi,

Lot's of phishing sites have been targeting my site and i think its thru JFBConnect, it appeared to be through this file -  /components/com_jfbconnect/index.php.

I had to buy a new license to upgrade. No noticeable damage was done but it was scary. My question now is.

1. Was it really through JFBConnect? In that case I don't have to investigate any more.
2. If so, after the upgrade has it been fixed? If so, I won't have to worry any further.

Thank you

(msg from my host below)

> Please be informed that you are hosting a fraudulent ‘phish’ web-site at the following URL:
>
> /components/com_jfbconnect/index (.) php that is now redirected to hXXp://micronmedical (.) com/santanderundetected/NuevaVersion/index.php where the abusive content is located.
>
> Kindly be provided with the *final* 12 hours grace period to remove the redirect in order to prevent any service interruption for (my url) (.) com domain. If the redirect is not removed within next 12 hours we may be forced to suspend access to this domain.
>
> Looking forward to your reply.

brycho
Bryan
useravatar
Offline
12 Posts
Active Subscriptions:

None
Administrator has disabled public posting. Please login or register in order to proceed.

Re: Got hacked through JFBConnect

We have never been informed of any security issues with JFBConnect in the file you mention, and it's been over 3 years since *any* security related issues have been reported or found in JFBConnect.

I can't guarantee you that no vulnerabilities exist, but there are none that we are aware of or that have been fixed recently.

As for your description of the issue, JFBConnect does not use or install a file in the path of:
/components/com_jfbconnect/index.php
If there was an 'index.php' file in that directory, it wasn't put there by JFBConnect. Additionally, no features of JFBConnect expect an index.php file in that directory and our code wouldn't normally try to execute that file.

The only files that should be in the /components/com_jfbconnect/ directory are:
autoloader.php
controller.php
jfbconnect.php

I hope that helps explain more about JFBConnect, but if you need anything else or have any more information on this issue, please let us know.

Thanks,
Alex

If you use our extensions, please consider leaving a rating and review at the Joomla! Extension Directory:
JFBConnect | SCLogin

alzander
Alex
useravatar
Offline
24428 Posts
Support Specialist
Administrator has disabled public posting. Please login or register in order to proceed.
There are 0 guests also viewing this topic
There are 0 users also viewing this topic

Board Info

Board Stats
 
Total Topics:
11859
Total Polls:
0
Total Posts:
49712
Posts this week:
7
User Info
 
Total Users:
48457
Newest User:
DavidZX
Members Online:
1
Guests Online:
1079

Online: 
chadcoldfusion
Social Stream
Hide, Seek & Defuse

Handheld Electronic Game

Alex from SourceCoast is working on a new electronic game for kids called Countdown. It's a timed game of Hide & Seek with mini-games (Whack-a-Mole, Simon, etc) to complete when you find it.

Hide and Seek Toys

Before You Leave

Let us send you a 10% off coupon

For Your Next Purchase

Please enable the javascript to submit this form

No , I don't want a discount