I currently was updating my vServer via console, updating also my letsencrypt certificates and so I checked my server-logs if there was any "special".
Nothing..but as i checked my nightly-subdomain log, there was something, UserAgent: "WebFuck V2.1 T0PHackTeam www.t0p.xyz", really? I checked the coressponding IP, was a Korean one.
They checked for any CMS and try to get the fckeditor-Plugin.
God damm, come on...I was studying the whole shit and know how I prevent such people
If you own a Sever, check your logs.
Mhm, I think - one Person who use my hwl-editor was trying to hack "check" it, because it was specially only the nightly-subdomain, no other one.
Kiddies..a real hacker doesn't leave anything
Nothing..but as i checked my nightly-subdomain log, there was something, UserAgent: "WebFuck V2.1 T0PHackTeam www.t0p.xyz", really? I checked the coressponding IP, was a Korean one.
They checked for any CMS and try to get the fckeditor-Plugin.
God damm, come on...I was studying the whole shit and know how I prevent such people
If you own a Sever, check your logs.
Mhm, I think - one Person who use my hwl-editor was trying to hack "check" it, because it was specially only the nightly-subdomain, no other one.
Kiddies..a real hacker doesn't leave anything