Hosting account suspended for hosting an eBay phishing site?

  • My site on WordPress 1.2 and I noticed many SPAM comments to my posts.

    Today I got a mail from my host saying “Your domain, mydom.com, has been suspended for hosting an eBay phishing site at https://mydom.com/muc/signin.ebay.com…Name-hhsin.php. This sort of activity cannot be tolerated on our servers.”

    First of all I did not have a folder called “muc”

    I talked to the host and they asked me to check the WordPress script and also for any 777 permissions.

    Please help me.

Viewing 3 replies - 1 through 3 (of 3 total)

  • Upgrade to latest version of WordPress and use your ftp client to look at the permissions on the files and folders? See if any are indeed 777?

    Thread Starter smartcard

    (@smartcard)

    I have found posting in this forum that there are sites that were phishing even with version 2.x is it only the version issue.

    There are version that are more vulnerable to being hacked than others. We always consider the latest the safest… although security updates can happen if a new threat is discovered.

    Your site might have been hacked through a wrong permission (never leave files or folder world writable, i.e. 666 and 777, respectively!); or through another script you use… the possibilities are endless.
    Also, it is not excluded that the server was hacked and then from there the bad guys infected more sites, not only yours.

    Here are some ideas to make your WP safer:
    https://codex.www.ads-software.com/Hardening_Wordpress

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Hosting account suspended for hosting an eBay phishing site?’ is closed to new replies.