Hi,
I have had Blesta installed and running for around 6 months now.
I am very happy with it, however just today my install got hacked (SPAM).
Here is a sample:
Spam email message sample:
Return-path: <fay_skinner@serverni.com> Received: from serverni by poseidon.thewebhostserver.com with local (Exim 4.85) (envelope-from <fay_skinner@serverni.com>) id 1ZWgdS-003brw-7c for laynaah-92@hotmail.fr; Tue, 01 Sep 2015 09:09:43 +0100 To: laynaah-92@hotmail.fr Subject: RE: The Famous Teen Movies X-PHP-Script: serverni.com/support/vendors/ckeditor/skins/v2/footer.php for 97.74.24.108 From: "Fay Skinner" <fay_skinner@serverni.com> Reply-To:"Fay Skinner" <fay_skinner@serverni.com> X-Priority: 3 (Normal) MIME-Version: 1.0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: 8bit Message-Id: <E1ZWgdS-003brw-7c@poseidon.thewebhostserver.com> Date: Tue, 01 Sep 2015 09:09:42 +0100 X-OutGoing-Spam-Status: No, score=1.7 <div> <h2>The Famous Teen Movies - <a href="[sNIPPED MALICIOUS LINK]" to see it</a></h2> </div>
I have suspended my own domain to prevent future spam, but I am wondering how to take action to prevent this?
I regularly change passwords and I am running the very latest version of Blesta.
Thanks,
Justin.