BreachExchange mailing list archives

Google Launches “Help For Hacked Sites” To Teach Site Owners How To Recover Their Hacked Sites

From: Jake Kouns <jkouns () opensecurityfoundation org>
Date: Wed, 13 Mar 2013 02:56:22 -0400

http://techcrunch.com/2013/03/12/google-launches-help-for-hacked-sites-to-teach-site-owners-how-to-recover-their-hacked-sites/

No site is fully immune to getting hacked, but there are some obvious
things every site owner can do to make it a bit harder for hackers to
break into a web server and add rogue links or take over a site
completely. Today, Google launched its new “Help for Hacked Sites”
series to teach webmasters how to avoid getting hacked in the first
place – and how to recover their sites if it happens.

The first part of the series is geared toward relatively non-technical
users, while the later part is aimed at users who can read code and
are comfortable with using terminal commands. Overall, the series
features about 80 minutes of video and a dozen or so articles that
cover everything from basic things like figuring out that a site was
actually hacked to working with your host to recover a site, all the
way to using vulnerability scanners, understanding SQL injections,
reading log files and using the shell to log into your site to
determine the root-cause vulnerability.

The series also explains how users can ensure that Google removes the
dreaded “This site may harm your computer” and “This site may be
compromised” links on Google Search after they have cleaned their
sites.

“While we attempt to outline the necessary steps in recovery,”
Google’s Developer Programs tech lead Maile Ohye admits in today’s
announcement, “each task remains fairly difficult for site owners
unless they have advanced knowledge of system administrator commands
and experience with source code.” Because of this, Google also points
site owners to its Webmaster Forum for additional help.
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges.

Current thread:

Google Launches “Help For Hacked Sites” To Teach Site Owners How To Recover Their Hacked Sites Jake Kouns (Mar 13)