Re: Warning: Iframe based attacks using stolen FTP access info
Just don't ever use FTP. It is completely insecure. If your hosts refuses to set up sFTP then you need to get another host. Most people don't understand that with FTP, your username and password are sent over the internet every time you connect to it. So those hosting companies that disconnect you every 5 minutes just make their hosting environment even more insecure as you have to reconnect all the time, sending your password even more times unencrypted (plain text) across the internet from your PC to the server. Anyone watching traffic on your PC or on the Server or the network in between could see your password in plain text.
We have only secure connections to our servers, including secure mail connections (secure pop or secure IMAP). It just reduces your risk this way. If you get a keylogger virus on your computer, they could still get into the server even with an sFTP connection, but your risk is lower using only secure connections to the server.
Sorry to hear about your troubles!
Carrie
|