"Ever been pwned?"

[dric...@utk.edu]

The Islandora Security Interest group would like to know your story.

Have you ever been hacked? (Islandora Stack)

 * How did it happen?

 * How did you realize the hack had happened?

 * How did you recover?

 * What would have done differently? 

* Would you be open to discuss this during a interest group Skype call? (Not Required)

Just respond to this post with these Questions and your answers.

We are exploring ways to better help our community. 

Thanks!!! Looking forward to Feb 1st ISIG call

https://github.com/islandora-interest-groups/Islandora-Security-Interest-Group

[Amanda Lehman]

This was a few years back when I was very new and we had recently migrated from 6 to 7, so memory is a little thin.  However, we noticed some questionable links on our Drupal content, and found that our admin account was hacked.  

While browsing or editing the site, we discovered links to various advertisements inserted into our webpages (links to "buy pills" and "click here for discount...", etc.)  After looking through possible security breaks in some of our themeing modules we traced it back to edits by the admin user account.  

So we implemented a system wide password reset, locked down our account creation and login processes to https only, and never saw issues after that.  

Recovery was easy as we deleted the ads from our content (the consultant used a search scanner module to find all edits).  

This is a pretty simple situation of making sure your login process is secure and passwords aren't default or easily hackable, so I'd rather not discuss it on skype. 

Cheers,

Amanda