I Got a new email from our hacker today

Here is the text:

Hello Frank Fenneran
It's me again with new updates.
As JoomDonation.com said they are safe now, I decided to hack their official demo site.
Event Booking demo site: eventbooking.joomdonation.org/includes/playing.html
Joomla Developer hacked using Document Seller component: www.joomlatema.net/english/modules/playing.html
Again, these components are vulnerable: Document Seller, Joom Donation, Event Booking, Eshop, Payment Form, Membership Pro.
JnLiau

Anyone else get it?

Hi Frank

The demo server is on a different server with our live site and It was hacked before as we mentioned. So there is nothing strange he hacked the demo site. We are going to clean up the demo server in the next few days.

For the site www.joomlatema.net/english/modules/playing.html , unfortunately, we had super admin account of that site in the support ticket system, so the hacker got super admin account of the site and uploaded that file to the site.

Everyone knows that we are using Documents Seller on our main site, so if the extension is vulnerable, the hacker would have my main site hacked by now.

Regards,

Tuan

Thanks Tuan,
I was not too worried, just wanted to keep everyone in the loop..
Best,
Frank

Thanks Frank. Hope you and other customers will stay with us.

Tuan

Tuan Pham Ngoc wrote: Hi Frank

The demo server is on a different server with our live site and It was hacked before as we mentioned. So there is nothing strange he hacked the demo site. We are going to clean up the demo server in the next few days.


The IP address of both sites is the same ?
Why would you have not cleaned and secured the demo site on the day of the first hack - this is very bad practice I think



For the site www.joomlatema.net/english/modules/playing.html , unfortunately, we had super admin account of that site in the support ticket system, so the hacker got super admin account of the site and uploaded that file to the site.

Everyone knows that we are using Documents Seller on our main site, so if the extension is vulnerable, the hacker would have my main site hacked by now.


So far the hacker (as far as I can see) has done little to cause any major issue to anyone's website, Maybe he/she is just trying to bring you down, but it is worrying you have had your site hacked for the second time!!!



Regards,

Tuan

Please reply to my contact form message I left earlier today on your website.

The IP address of both sites is the same ?
Why would you have not cleaned and secured the demo site on the day of the first hack - this is very bad practice I think

=> It was not the same. But they were both hacked because a mistake on one of our demo site. We made a clear announcement about this issue a while back joomdonation.com/forum/questions/45092-o...ty-announcement.html

So far the hacker (as far as I can see) has done little to cause any major issue to anyone's website, Maybe he/she is just trying to bring you down, but it is worrying you have had your site hacked for the second time!!!

=> I understand that. However, our first priority is secure our main site (and some other tasks as well). We now completed what we need to do, so we will be working on our demo sites to make them secure as well. It will take few days, maybe one week as we have few demo sites.

Please reply to my contact form message I left earlier today on your website

=> Yes, will check and reply emails after replied all forum questions. Please wait for me

Tuan

I got this today....

Get 14% discount

We're proud to announce a new milestone for our powerful Event Management and Booking component, MijoEvents. This release comes with terrific features such as new Checkout, Printable Tickets, Barcode and QR Code systems.

The most wanted feature from our members was to not go to MijoShop but just use it in the background during the reservation process. And we're introducing it into this release. Check out the video teaser to see it in action.

Your attenders can now print their tickets and use them as validation in the entrance of the event. The ticket includes both Barcode and QR Code so you could use any reader and/or enter the Barcode number manually as I did in the above teaser.

Here you can find the full details of this amazing release.

Don't you have MijoEvents yet? Feel yourself lucky as we offer 14% discount to celeberate this release. Check out the coupon code.

miwisoft.com

Anyone else? It's using my name and email address... I don't remember dealing with this company before.

Hi Rob

For your information, MijoEvents is a fork of Events Booking.

Tuan

Rob wrote: I got this today....

Get 14% discount

We're proud to announce a new milestone for our powerful Event Management and Booking component, MijoEvents. This release comes with terrific features such as new Checkout, Printable Tickets, Barcode and QR Code systems.

The most wanted feature from our members was to not go to MijoShop but just use it in the background during the reservation process. And we're introducing it into this release. Check out the video teaser to see it in action.

Your attenders can now print their tickets and use them as validation in the entrance of the event. The ticket includes both Barcode and QR Code so you could use any reader and/or enter the Barcode number manually as I did in the above teaser.

Here you can find the full details of this amazing release.

Don't you have MijoEvents yet? Feel yourself lucky as we offer 14% discount to celeberate this release. Check out the coupon code.

miwisoft.com

Anyone else? It's using my name and email address... I don't remember dealing with this company before.

You must have signed up for, or emailed miwisoft.com (formally mijosoft.com, them in the past in order to get on the mailing list.

I got the the email from miwisoft.com because I use there shopping cart software. I have used it for the past few years and I find it hard to believe that they would be behind your hack.

They have event booking software. I looked at it the same time as I looked at yours and I went with yours because it was simpler to use and didn't need user registration.

Frank Fenneran wrote: Here is the text:

Hello Frank Fenneran
It's me again with new updates.
As JoomDonation.com said they are safe now, I decided to hack their official demo site.
Event Booking demo site: eventbooking.joomdonation.org/includes/playing.html
Joomla Developer hacked using Document Seller component: www.joomlatema.net/english/modules/playing.html
Again, these components are vulnerable: Document Seller, Joom Donation, Event Booking, Eshop, Payment Form, Membership Pro.
JnLiau

Anyone else get it?

I did