Cloud hostingis most upcoming and most promising technologies that may change the way we look at hosting data online .However , this technology is still relatively new and undergoes major developments .some people equate this lack of technological maturity with lake of security .

cloud hacking

Cloud hosting is a means by wich services; WebPages and files are hosted on distributed servers wich are made to run as one cohesive unit. This means that the software side

(Or the files) is decoupled from the hardware. This allows for scalability and robustness; since the state of your hosting is not too dependent on the state of your hosting is not too dependent on the state of your hardware.

This may also create more reliable service; because hardware is the most common point of failure and source of downtime.

Cloud hosting also allows you to price hosting not in terms of the hardware used; but on terms of service used; similar to electricity and other utilities. This also means that the service is scalable; making less prone to denial of service attacks (Dos attack) or the much aforementioned Slashdot effect.

 A  hacked website costs you readers, search engine rank and time and money.
Use these tips to help you find and clean a WordPress website from hacked code and malicious malware links inserted into the website code.

Wordpress hacking

WordPress vulnerabilities ; SQL injection, JavaScript insertion and.htaccess hacks are all common ways to alter the content on your WordPress website.Some hackers redirect users to another website, other hackers insert malicious links and some other hackers use the .htaccess file to steal Google rank. If you think you are hacked, here are some common sings to search for in your website code.

Check Your.htaccess File :

The .htaccess file is always in the root dlretory of your
WordPress site. The .htaccess file lets you control how the
server handles website requests such as Google crawler
access and URL redirections Hackers who gain access to the
.htaccess file insert a few lines of code that redirect
search englnes. The hacked code detects the “user
agent”value, which is passed from a web browser or
search engine to the WordPress server. If the user agent is
“Google,” the hacked .htaccess file redirects Google to
the hacked website. This hack 1s completely invisible to
your WordPress readers, and it only affects Google rank
The following code is an example of hacked .htaccess code:

RewriteCond %{HTT-REFERER} .*google.* [OR]
RewriteRule ^(.*)$ http//hackedsite.com/index.php
[R=301,L]

In the above example, if Googlebot crawlss the website, the (continue reading…)

attack asp

When i was testing an iis server after defacement attack, the webmaster was confused how hackers gaina ccess to the server and changes the visual appearance of the site or a webpage .

1 – Hackers use xgallery (Absolute gallery): SQL injection to get admin passwords and upload backdoors .
2 -Hackers uploaed automatically tools to deface the server replace every index.
3 -Hackers record the defaced home pages in zone-h digital attack archives.

Hackers exploit Xgallery panel to bypass the upload : Web application security

This attack allows a hacker who can upload a “safe” file extension (jpg, html, etc) to upload an ASP script and force it to execute on the web server. The vulnerability occurs when a file name is specified in the form of “attacker.asp;.jpg” — the application checks the file extension and sees “jpg”, but the web IIS server will stop parsing at the first “;” and sees “asp”. The result is trivial code execution on any IIS server that allows users to choose the file name of their uploaded attachment.

(continue reading…)