Support

Admin Tools

#15110 Possible Hack?!

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by nicholas on Friday, 22 February 2013 03:07 CST

Thursday, 21 February 2013 21:22 CST

ktjscm

Mandatory information about my setup:

Have I read the related troubleshooter articles above before posting (which pages?)? No
Have I searched the tickets before posting? No
Have I read the documentation before posting (which pages?)? No
Joomla! version:2.5.9
PHP version: 5.3
MySQL version: (unknown)
Host: (optional, but it helps us help you)
Admin Tools version: 2.4

Description of my issue:

Previous Ticket was deleted because I didnt type a Topic!!! (A little annoying)

Ok, I just recieved an email from someone in China.  This would not be an issue except that they used the disabled admin account name to send the email. More Detail:  After instaling Akeeba Admin tools I hit the button that disables the normal admin and replace it with a more secure admin id.  The renamed admin account is "3pYS_admin"  The email I recieved used this "3pYS_" in oder to send an email to my domain.  I recieved it because my email address for my domain happens to be a catch-all account.  How could this have happened?

Have I been Hacked?  What are my next steps?

-ms

 

 

Friday, 22 February 2013 03:07 CST

nicholas

Firing up my crystal ball (and hope that I guess right):

You have a contact form on your site which you created before using Admin Tools to change your Super Administrator ID. As a result the contact the that form is linked to references the old user's numeric ID, therefore all emails sent from that form end up in 3pYS_ email address instead of your intended email address. You are not hacked, you just need to redefine the contact information used in the contact page on your site.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!