The Story of the Cyber Attack and Lessons to be Learned

Let me start by saying that this is the first time I’ve had to sit down and write a blog since 10.30pm last Friday night.

A mob based in Saudi Arabia calling who’s name I’ll leave out for security reasons rampaged through my server and hit every WordPress site. They totally trashed blogs and pages on these sites.

The Celtic Network took the brunt of it because basically it had to take one for the team. I have 9 other WordPress sites on my server which I have built for clients Maley’s Bhoys being one so those sites had to take priority basically because I was paid to build them but not maintain them. If you have a WordPress site you must always update to the latest version as soon as it appears and update any plugins as soon as those updates appear. This is the best way to keep a Content Management System secure. I digress.

Anyway It took me working flat out till 1.00 pm on Saturday to stabilise and clean these sites. I managed to trace where the hacker got in and it was a clients site who since the day it was launched three years ago had not bothered updating anything even although the where provided with the info in an information pack I hand over to clients when the site is completed. They also agree in a written contract that they are solely responsible for the up keep of their site or they can pay me to do it. They never. So they have been sent a very large bill.

It has took me till today to finally get TCN back to decent working condition. However Tonight I will be downloading the site to my pc and running a final run of anti virus/malware tests. I have also installed on line anti virus protection for TCN  and Malleys Bhoys. I’ve sent a letter to the clients to suggest they do the same.

The site will still be live but I would ask anyone making predictions not to do so after 8.00 tonight. You may start making predictions from 8.00 am to morrow morning. For all those who have made predictions don’t wory they are already backed up in the database so you won’t have to do them again.

Finally can I ask members to make sure their passwords are strong  at least 8 characters long mix upper and lower case letters and for extra security stick a symbol in some where “£$%^&*()_+=-@’#~<>/? that type of thing.

Don’t over complicate it make it a combination of things you remember , write it down and keep it safe.  So something like f3B%aC12

If you have a WordPress, Joomla or Drupal site keep these tips in mind all it takes is one clown with a site on your server and you are gubbed. Also make sure your PC’S, Lap tops, Tablet and Smart Phones are well protected because that is another way a hacker can access a web site and cause havoc.  So take care.

So just a few tweaks tonight then were back to normal writing about football which I have had no time to think about. 🙂

 

Comments

  1. Jas,i turned on my laptop tonight and i was constantly alerted with e-mail alerts,over 150 e-mails from TCN,unreal mate,i tried to get you on twitter to let you know,not sure if you got my message.

    1. Sorry mate just found out about half an hour ago. Ironically I have just released a blog explaining what happened.

  2. Jas,i turned on my laptop tonight and i was constantly alerted with e-mail alerts,over 150 e-mails from TCN,unreal mate,i tried to get you on twitter to let you know,not sure if you got my message.

    1. Sorry mate just found out about half an hour ago. Ironically I have just released a blog explaining what happened.

  3. Jas, great blog and great site. I appreciate all your hard work, as I am sure it would have been very easy just to walk away – O’ wait, have I got that wrong……

  4. Jas, great blog and great site. I appreciate all your hard work, as I am sure it would have been very easy just to walk away – O’ wait, have I got that wrong……

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.