Question
What should I do after being hacked
I noticed my test Rails app calling some strange routes
" Started GET "/w00tw00t.at.blackhats.romanian.anti-sec:)".
and also running php my admin scripts even though I never installed it. Also in the logs, there's a record of connections from strange ip addresses (such as 203.199.209.145 ) that google results reveal to be associated with suspicious behaviour
Add a comment
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
×