
Originally Posted by
lots0
We had an employee(remote tech) of our hosting company inserting redirects, not to pics of donkey dicks, but to his own aff accounts. Cost us a bundle.
The redirects were well hidden and I hate to say it, well written htaccess files. He was smart enough to take only a percentage of all our click throughs and to cover his tracks well.
Once we figured out we were hacked (I stumbled across one of his redirects by accident).
the thief of course knew we found him out, he worked as a 'security' consultant.
Once he knew we were closing in on him, he started making injection attacks in an attempt to cover his tracks. When that didn't work... the SOB made a hell of an effort to screw us by deleting all our db's.... multiple redundant backups.. don't go anywhere with out them.