Posted by easwari on November 23, 2012 at 7:28pm
Hi
Some of my site users are seeing site contents linked to a third party site (hijacked content). These links dont appear during "edits" but only visible at 'view'. I am not able to login as these users to troubleshoot. Once I change their password, these hijacked links go away at their end.
I can change everyone's password for now but what is the long term solution to prevent site hijacks like this. Have anyone experienced something like this? Do you know how I can overcome this security issue?
thank you!
Comments
Can any one see the links? I
Can any one see the links?
I ask because it sounds like the issue is with the users PC having a virus/trojan.
I can't see the link but..
I can't see the link myself by another admin user can see that link. When she changed the password for the effected user, the link went away for that user. Since she did not change the password for herself the link remained. Is this a trojan from a user's side of things and not at the server level? If so what can I do to overcome this issue?
Depending on where the link
Depending on where the link appears you might check to see if index.php or a template has been hacked but since only some people see the issue it suggests it is client side. You might have the other admin change her password and see if she still sees the link.
appears to be client side issue
yes...this appears to be client side issue and not server side. I'll know for sure on Monday when she comes back to work.
Thank you for your help with this.
Easwari