Related Categories: FeaturesSupportWeb Hosting
Malware Injection Attack
September 13th, 2009 | Posted by Pin

Malware injection attack is spreading like wildfire these days, and countless websites have been affected. The attack is done via a compromised FTP, and many believe that the virus can actually “sniff out” FTP passwords and send it back to the hacker. The hacker then uses your FTP password to access your website and add malicious iframe coding to infect other visitors who browse your website.

Malware injection warning sign by Google Chrome

Malware injection warning sign by Google Chrome

Most web browsers will put up a notice when they’ve detected malware in your website. This prevents other people from unknowingly downloading the malware. If you’d like to check if your website has been infected, use the Website Security Check from Unmask Parasites.

Security report from Unmask Parasites (beta)

Security report from Unmask Parasites (beta)

You might also like to take the following preventive measures to protect your website from malware:

1. Upgrade your Adobe Reader to the latest version
2. Install anti-virus software like Malwarebytes and Comodo
3. Use SFTP instead of FTP
4. Remove all malicious coding from your website
5. Upgrade to latest WordPress if you have a self-hosted Blog
6. Change your FTP password

For further reading, check out Hidden iframe injection attacks

You may want to take a look at our related posts
Read on the go: handpicked articles from this site

2 Responses to “Malware Injection Attack”

Pin said:
September 16th, 2009

A friend of mine with his website hosted in one of the biggest hosting provider in Malaysia is sharing his experience with me:

“During those period of time, I emailed XXXXXX (my hosting) few times, in which they could not help much. I also emailed Google few times to plead and appeal, as to not penalize my website anymore, and get it out from their sandbox.”

Through the cause of malware attack is a compromise of security on client-side level. Yet, there are many thing a web hosting can do, including informing all customers to change their FTP password (or do a FTP reset for all), to remove hidden iframe codes in bulk, etc.

Pin said:
July 5th, 2010

Latest malware attacked add malicious code to your Post. They gain access to your DB through older version of Phpmyadmin

Leave your comment

Name (required)
Email (required) (will not be published)

Contact us
I'd like to enquire about... Choose your next step!
This Month's Response Time: Hours Mins
Search 1.com.my
Recent Comments
Prasad: Hi pin, recently i got an iphone4s. somehow i manage to recei
tuwebhost: Are web hosting and blog hosting two different things? In other w
Victor Koon: Hello, May i know how can i setup my odbc to my php database?
Pin: Download 'Good Email Practices' http://www.scribd.com/doc/7642
Eddie: Hi, i would like to know more about the reseller program. Thanks
Other Startups
Evisa Asia
FB: Evisa Asia
The Entrepreneurs' Lab
Pin Cloud Store
Your Website Solution Sdn Bhd
Friends: Web Developer Alliance
Your Website Solution Sdn Bhd (581562-A)
27-9, Oval Damansara, 685, Jalan Damansara, 60000 Kuala Lumpur, Malaysia
Tel: 03-92128520 Fax: 03-92128519
Copyright © 1999-2018 1.com.my
All Rights Reserved