Quote:
Originally Posted by Emerson
All access I've seen with this issue it was done via FTP login and it is clear in the logs.
I personally believe this is an aftermath of someone's helpdesk getting hacked into and these logins were obtained that way.
If it was a vulnerability and/or as using insecure FTP(as some have suggested here ) this would have been a much more wide spread issue and would have affected many more sites and not just a handful as we have seen. Also it would have not been limited to just x-cart users which seems to be the case so far.
|
Well, IF someone's helpdesk has been hacked, it is qualiteam, as one of these server's info was ONLY given to them, I can say that with 100% certainty.
This issue is related to the x-cart software, no doubt about that.
I am kind of missing info from them here, this is an
extremely serious issue, and I would expect them to come in and try to identify the source of the problem.
Now.