Security issue (files/maps are accessable online?)
-
We got the following email:
“I’m an independent IT security expert. I have found a security issue on your website http://steigerhouttrend.nl.
I was able to access a lot of files that contain sensitive data.
I attached a screenshot of the files I found to this email.I would be happy to give you the method I used to access these files in order to let you fix it.
Do you have a bug bounty program or offer financial rewards for security advice?Please forward this email to the right person, if you are not responsible for the security of the website.
This email is personal and in no way related to any of my employers.”
In the attachment are shown the files from our site.
Here is the link to the attachment:This person asks money for his advice about fixing this problem.
What shall I do? Is it dangerous?
-
Hi there, as I can see in the file there are not any proves, that this man has been hacked your website.
I definitely advice you to update plugins, themes & the core to their latest versions.
You can use, TAC (theme authenticity checker) & the exploit scanner plugin, to scan your website for any injected code.
Also contact with your hosting company, so they can run a full malware scan (server side) -
- The topic ‘Security issue (files/maps are accessable online?)’ is closed to new replies.
WordPress.com Forums 