JoomlArt's Blog

Joomla Tutorials, info, Discussions and much more...

As you may also have observed, both the sites JA Voice and JA Job Board, have been defaced 3 times in the last 2 weeks. The reason? The Demo sites running on the same server allows superadmin login access to back-end, which allows to edit layout files (CSS & Templates) in back-end. Therefore, hacker can edit those php files and insert injection code. This made both the sites quite prone to hacking attempts. That's what has been happening for the past 2 weeks.

We have initiated the corrective measures to segregate the demo sites and will soon move these 2 sites onto separate servers and both the sites are functioning normally. If need comes, we may release updated versions of both the components. If you are running a JA Voice or JA Job Board site, make sure, the permissions to edit files in the back-end is restricted to someone you trust only. As on now, the component is not vulnerable and do not pose any threat.

Joomla sites are getting hacked all around the globe, but for many other reasons too. One needs to secure his Joomla installation and components and keep them updated to the latest version.

Related Posts

BLOG COMMENTS POWERED BY DISQUS