Website
Why have a Website?
Website Design & Development
Ecommerce
What is ECommerce?
How eCommerce works?
Payment Gateway
Success in online Business
Ecommerce Website Design Tips
Terms & Acronyms
SEO
What is SEO?
Website not listing in search engines
Security
Security on the Internet
Protection from Internet Frauds
Phishing
Spoofing
Gumblar Attack
Iframe Hacking
PHP Security Blunders

¤ Home » Security » Iframe Hacking

Iframe Hacking

What is IFrame Hacking?

In an IFrame attack, the hacker injects a malicious JavaScript code in your web site page which includes an IFrame. When anyone visits that page they are redirected to another site, and Trojan malware such as keyloggers are installed on the unsuspecting user's computer.

These hacks are taking place on sites hosted on both Linux, and Windows operating systems.

If your site is hacked it does not mean your host is lacking on the security side.

How do Hackers gain access to your website?

There could be various factors due to which your website is compromised and hackers gain access to your web pages. Some of these factors are mentioned here.

FTP Account

If you use FTP, you are in danger of exposing your passwords to hackers because the passwords are passed between your FTP client and your website in plain text. Use a program like WinSCP, or an FTP client that allows you to connect to your site using SFTP, SCP. Both of these methods encrypt your user name and password, making it much more difficult for a hacker to discover them, even if they intercept them with some sort of packet sniffer.

Hosting Control Panel

If you log into your Control Panel always use a secure port to login. Use a password generator to generate your passwords. Never use the same password to log into different sites or control panels. Change your passwords often.

Infected Computer

Your control panel or FTP password is compromised. If you system is infected with Virus/Trojan/Spyware then there a chance that hacker gets some confidential information from your system and may damage your system. It is a best practice to have Anti Virus installed on the system and also it should be upgraded to its latest version. To fix this security hole, you can simply reset your password to hard one. Also never set dictionary words as your password.

XSS Vulnerability

XSS (Cross Site Scripting) vulnerability in your site. If your site has XSS vulnerability then there is a high risk for such type of hacking.

SQL Injection

If your site is not designed to prevent SQL injection then hacker can easily get to access your database and insert malicious code.

There are many other reasons than the ones mentioned above. You should test your website in all aspects before putting it live.

Welcome! Guest