does anyone know how the website got a virus ?
glad its all fixed now though.
Don't speak too soon! The site has actually been attacked again.
It's a common exploit that has been used on the site, it's not a virus, it's some script that hijacks the site to get you to go somewhere else. You type in
www.eastleigh-fc.co.uk, you get
www.buy-viagra.com where you'll get infected with spyware. Google keeps a database of when this happens. Most browsers use those databases to protect people which is why you might get a message to say that the site has been blocked or your anti-virus software will block the site.
We've put in so many measure on this site to stop this happening but every time we shut one door they find another way in. The initial attack came through the forum which is quite old. They use weaknesses in the forum to crow bar their way in. Once they're in then they run round opening other doors wherever they can. So we shut the door on the forum, not realising that they've opened a door somewhere else.
I've got 2 developers working full time this week to rebuild the whole site on a new system with a new forum. There's LOTS of content to copy over and this will take time. Once it's done though we'll have a much better system generally and we should all be nice and secure again. What I need to do is devote my time to getting the new system built. Devoting time to fixing the hack each time is just chasing our tails.
All I need at the moment is your patience. This is not something that me or the club has brought on ourselves, this is the result of some very persistent and unscrupulous hackers in somewhere like China or Russia. Even if we could find them, these are countries who have little or no interest in prosecuting such people. Personally, I'd like 5 minutes alone with one of them... just 5 minutes.
I'll keep you all posted but, fingers crossed, all will be well again in a week!
Best regards
Andy
