Thread: All Sites Hacked - Iframe Added
View Single Post
  #8 (permalink)  
Old 03-07-2009, 20:10
eUKhost.com's Avatar
eUKhost.com eUKhost.com is offline
Chief Marketing Officer
  
Join Date: Sep 2005
Posts: 5,922
Send a message via AIM to eUKhost.com Send a message via MSN to eUKhost.com Send a message via Skype™ to eUKhost.com
Default
Quote:
Originally Posted by BinaryReason View Post
I was talking about the storage method of passwords on your local machine and not actual protocol itself (which I also mentioned).
A quick search of Filezilla password recovery, will show plenty of tools that simply extract that data.

Though as I said, the scope of these attacks, suggests a network sniffing trojan, that extracts the passwords.
You are absolutely right with your investigation.

FileZilla and older versions of other FTP softwares like WS_FTP_Pro have this problem. One should never store FTP credentials in a FTP software.

A notepad would be safer option to store your passwords, never store your FTP login credentials in a FTP software.
__________________
UK Web Hosting || Business Hosting || eUKhost Knowledgebase
Toll Free : 0808 262 0255 || Skype : mark_ducadi
A bunch of Sheep led by a Lion is better than a bunch of Lions led by a Sheep.
__________________________________________________

Please email cmo[at]eukhost.com if you have any questions or need my assistance
Reply With Quote