funnycamel Posted February 2, 2021 Posted February 2, 2021 (edited) Hello. i'm using Thirtybees 1.1.0-1.1.x I have found that a hacker can send emails on behalf of the website via the CMS, the email goes to ALL customers. I believe this is through some kind of hack via the contact form. For now, I have just completely disabled the Contact Form. Any advice on how to address this issue? Edited February 2, 2021 by funnycamel more details
0 30knees Posted February 2, 2021 Posted February 2, 2021 Could you share more information how you discovered this?
0 ariom Posted February 2, 2021 Posted February 2, 2021 (edited) I think the better for you is to install and configure ASAP this 2 very usefull module:Blackhole for Bad Bots from DataKick andNo Captcha reCAPTCHA Module from ThirtyBees I had the same problem and implementing this two security layers did the trick for me ... Edited February 2, 2021 by ariom
Question
funnycamel
Hello. i'm using Thirtybees 1.1.0-1.1.x
I have found that a hacker can send emails on behalf of the website via the CMS, the email goes to ALL customers. I believe this is through some kind of hack via the contact form. For now, I have just completely disabled the Contact Form.
Any advice on how to address this issue?
Edited by funnycamelmore details
2 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now