Re: [cnorthey] Website hack
Hi cnorthey,
We've never had a site hacked through CMS Builder, and there's never been a security issue that would allow that. So it's almost certainly not CMS Builder.
The usual entry point is open source forums, email form, and blog software. Since these are so common hackers write automated scanners to look for vulnerable versions. Do you clients have any of those scripts on their sites? Even if they are old and no longer used, the hackers scan for the automatically using known paths.
In the 1-2 reports a month we hear of someone getting their site hacked, that has almost always been the cause.
Let me know what you find out or if you need more help tracking it down.
Dave Edis - Senior Developer
interactivetools.com