UBB.threads PHP Forum Software Community Forums UBB.threads 7 Version 7 Support Help with "compromised" board

Hi,

Looks like my board was compromised sometime this morning with all links and images pointing to another website.

http://www.livc.net/ubbthreads/

Just notified my hosting provider.

I'm far from a programmer or code writer but wanted to inquire about how someone can do this and if its fixable by someone that just dabbles with this stuff.

Also, how can I close the board? The close board link also points to the other site.

Figured it out from googling around.
config.inc.php was hacked, replaced with backup.

Well, some security auditing should be in order; just because someone fiddled with the UBB.threads script doesn't necessarily mean that's what was hacked/exploited, you should try and make sure all of the scripts on your site and (if you're on a VPS or Dedicated server) all of the scripts installed on the server as a whole are up to date.

Thanks for your response.
Upon further investigation and now that I can get into my CP and see the logs, it looks like a login was made to my CP using an admin user name. It also shows the change made to the database paths and urls/paths and urls page replacing the board info with their info.

IP shows Cairo Egypt. I'm in NY.
Changed password and privileges for the acct in question.
Think that's enough?
Thanks again.

general rules to follow for a board that i suggest:

1. _never_ have an admin username be 'admin'
2. _always_ make the login name _different_ from the display name for all admins (ie: i show Sirdude here, but my login name is gismachie for example)
3. _never_ use a password that is a word or words or date or 123456 ( yes that is one of the most popular passwords! )
4. use a strong password and maybe even a tool like Lastpass to remember it for you ( it is free )

this will at least prevent anyone from guessing a login

Thanks!