Sign In
Find content
Not Telling
Still looking into ourselves too (had about 20 sites hacked, 3 non hacked).
Of course sites still in development (ie not public) were not hacked even though they are web-accessible, so it would suggest a google search for dispatch urls could have built the bot list.
Regarding the admin urls, could it have anything to do with the compromise of Twigmo recently where you advised we change our admin url?
Two of the three non-hacked sites were compromised by Twigmo and therefore we had changed the admin url.
The third non hacked site was a really early v2 cs cart site, maybe the version did not have the atos/hsbc files...
|
|
