I've Been Hacked, Now What?

Beth Tucker Long (18.Jan.2014 at 14:30, 50 min)
Talk at Ski PHP Conference 2014 (English - UK)

Rating: 5 of 5

I've Been Hacked, Now What?

Who are you?

Claim talk

Talk claims have been moved to the new Joind.in site.

Please login to the new site to claim your talk

 
Comments closed.

Comments

Rating: 4 of 5

18.Jan.2014 at 14:57 by Omni Adams (116 comments)

Lots of good post-mortem information.

Seemed very WordPress-specific, though the talk synopsis doesn't mention that focus.

Some of the slides were really difficult to read because the text was so small and there was so much information on there. Specifically the resources page, which you went through lots of the points individually. Perhaps split those out to different slides when you're talking about them?

Rating: 5 of 5

18.Jan.2014 at 15:08 by David Stockton (189 comments)

Good talk on how to recover from a wordpress site getting hacked. I think the suggestion to control the site through git or mercurial provides a very good way to determine if the site has been hacked and quickly recover (or more quickly anyway). Beth's comment that the repo should be read-only is good as well but if the user is keeping track of the hash that the code should be on, it should be simple enough to get back to that point and remove any compromised code that may have been injected.

Rating: 4 of 5

18.Jan.2014 at 15:12 by Mark Niebergall (120 comments)

Good explanation of how to dig into the logs to determine path attacker took. There were some good insights regarding how an attacker may take their time to attack once they have a back door in place.

Rating: 5 of 5

18.Jan.2014 at 18:08 by Blake Johnson (36 comments)


© Joind.in 2019