News:

Support the VirtueMart project and become a member

Main Menu

Security breach? User registration messages from an inactive VM

Started by vmtitov00, October 06, 2018, 10:10:25 AM

Previous topic - Next topic

vmtitov00

Hello,

I keep receiving user registration messages (subj: A new shopper ************ registered at your shop *********), about 3-5 in a week. "Users'" data are obviously fake. I have VM installed but it is not active and not accessible from site's menu. It looks like the site is being getting hacked. Current configuration is Joomla 3.8.12 + VM 3.4.0 (to be updated to 3.4.1 in a few minutes).

Any advise would be very appreciated.

Jörgen

You can access joomla login by link and register a fake user.

Is it a complete VM registration or just Joomla data?

Jörgen @ Kreativ Fotografi
Joomla 3.9.18
Virtuemart 3.4.x
Olympiantheme Hera (customized)
This reflects current status when viewing old post.

GJC Web Design

GJC Web Design
VirtueMart and Joomla Developers - php developers https://www.gjcwebdesign.com
VM4 AusPost Shipping Plugin - e-go Shipping Plugin - VM4 Postcode Shipping Plugin - Radius Shipping Plugin - VM4 NZ Post Shipping Plugin - AusPost Estimator
Samport Payment Plugin - EcomMerchant Payment Plugin - ccBill payment Plugin
VM2 Product Lock Extension - VM2 Preconfig Adresses Extension - TaxCloud USA Taxes Plugin - Virtuemart  Product Review Component
https://extensions.joomla.org/profile/profile/details/67210
Contact for any VirtueMart or Joomla development & customisation

AH

To prevent this -  I use an override:

templates\YOURTEMPLATE\html\com_virtuemart\user\edit.php

This will prevent users editing their own data - but I decided that it was worth it for my purposes



<?php
/**
*
* Modify user form view
*
* @package VirtueMart
* @subpackage User
* @author Oscar van Eijk
* @link https://virtuemart.net
* @copyright Copyright (c) 2004 - 2010 VirtueMart Team. All rights reserved.
* @license http://www.gnu.org/copyleft/gpl.html GNU/GPL, see LICENSE.php
* VirtueMart is free software. This version may have been modified pursuant
* to the GNU General Public License, and as distributed it includes or
* is derivative of works licensed under the GNU General Public License or
* other free or open source software licenses.
* @version $Id: edit.php 9881 2018-06-20 09:03:58Z Milbo $
*/

// Check to ensure this file is included in Joomla!
defined('_JEXEC') or die('Restricted access');

//quorvia edited to prevent bots registering

?>

<h1><?php echo $this->page_title ?></h1>
<?php echo shopFunctionsF::getLoginForm(false,false); ?>

Regards
A

Joomla 3.10.11
php 8.0

GJC Web Design

GJC Web Design
VirtueMart and Joomla Developers - php developers https://www.gjcwebdesign.com
VM4 AusPost Shipping Plugin - e-go Shipping Plugin - VM4 Postcode Shipping Plugin - Radius Shipping Plugin - VM4 NZ Post Shipping Plugin - AusPost Estimator
Samport Payment Plugin - EcomMerchant Payment Plugin - ccBill payment Plugin
VM2 Product Lock Extension - VM2 Preconfig Adresses Extension - TaxCloud USA Taxes Plugin - Virtuemart  Product Review Component
https://extensions.joomla.org/profile/profile/details/67210
Contact for any VirtueMart or Joomla development & customisation

vmtitov00

Thanks to everybody for suggestions. I made a test registration from my web site and received a similar message. Its template has recently changed, that's what made me anxious.