Jump to content


Issue Information

  • #000110

  • 0 - None Assigned

  • Unfiled

  • -

  • -

Issue Confirmations

  • Yes (0)No (0)
Photo

Server passwords being extracted from SmartFTP

Posted by KarlS on 06 November 2010 - 10:56 PM

From my hosting servicce. "We regret to inform you that we have found that your FTP password has been compromised. It is likely that it was stolen by a "hacker" (or someone with malicious intent against your account) or a Trojan. This means that your account is now vulnerable to malicious scripts. Your account will be completely cleaned from all known malicious code in the nearest time." The only place I keep the ftp password is stored in SmartFTP.

This is the second time since May that this has happened. Is this a known problem with a fix?

Updating status to: Bogus

Not a bug report.

My recommendation:
1. Install Microsoft Security Essentials (free): http://www.microsoft...ity_essentials/ and uninstall any other antivirus products you have installed. Then do a full scan.
2. Only connect to the server using FTPS (FTP over SSL/TLS) or SFTP (SFTP over SSH). If your web hosting provider does not offer such a feature, switch to one that does. E.g. www.dreamhost.com
3. (Optional) If you are still running Windows XP, upgrade to Windows 7 for improved security.

Updating status to: Bogus

Not a bug report.

Actually I do believe this is a bug. Someone out there has managed to break your password encryption.

My recommendation:
1. Install Microsoft Security Essentials (free): http://www.microsoft...ity_essentials/ and uninstall any other antivirus products you have installed. Then do a full scan.
2. Only connect to the server using FTPS (FTP over SSL/TLS) or SFTP (SFTP over SSH). If your web hosting provider does not offer such a feature, switch to one that does. E.g. www.dreamhost.com
3. (Optional) If you are still running Windows XP, upgrade to Windows 7 for improved security.

Doesn't look like I can do secure ftp. Too many sites to move to another server. Upgrading to Windows 7 from Xp would be a costly, time consuming nightmare.





0 user(s) are reading this issue

0 members, 0 guests, 0 anonymous users