Live Again!

MusTech.Net Live Again After Serious Hack via Timthumb.php Exploit

Last Updated on

Live Again!

MusTech.net is Live again!   We experienced a significant hack from part of our theme that had an old version of timthumb.php.   Despite the fact that I am very vigilant at keeping this site updated and protected, I failed to catch this vulnerability in time, even though I was aware of its existence.  This hack was caught within 24 hours of it evolving, but it infected almost every aspect of my site from hijacking browsers to embedding phishing scams in multiple directories.

MusTech.Net has had about 90% of its code re installed and cleaned the site from almost scratch.  As you can imagine, this has created quite a bit of unwanted work for me during an already incredibly busy time.   I’ve sent of the infected code to the various agencies and hopefully they will get a few folks behind these terrible crimes…

If you would like to read about this hack and how it effects almost every type of blog oriented (and regular Websites as well) read this article:

Tech Center: Hacker’s “Timthumb” their noses at vulnerability to compromise 1.2 Million Sites.  

If you have a WordPress site, you can scan for this vulnerability with this reliable plugin:
Get the Plugin from WordPress here: TimThumb Vulnerability Scanner

You can get the latest, secure version of TimThumb directly here:  Timthumb version 2.8.2  – just copy it directly over your old code files.   However, even though this patches the entry point, if your site was already hacked, it doesn’t stop any already “planted” code from operating or spreading… it’s tantamount to shutting and locking the suspect door after the murderer is already in the house…

I plan on spending some of the Thanksgiving break and much of the Christmas break working on various music education related activities, and you can bet that some of them will include getting this site back to 100%.

Regards to all and apologies for the down time.

Dr. J. Pisano

Print Friendly, PDF & Email

Related Post from MusTech.Net

Joseph M. Pisano, Ph.D. is an industry innovator, education clinician and lecturer, trumpeter and conductor, and the creator of many education websites. He is currently the Vice President of Innovation and Engagement at Keystone Ridge Designs, Inc. After twenty-three years as a professor and administrator at Grove City College, he made the move into industry in 2018.  As one of the youngest full professors in Grove City’s history, he served in various roles over his tenure including the Technical Director of the Pew Fine Arts Center, Assistant and Associate Chairs of Music and Music and Fine Arts, Director of Music and Fine Arts Technology, Director of Jazz Studies, Stage Manager, and he finished his tenure as the Director of Bands where he directed the college’s Symphonic Concert Band, Wind Ensemble, Marching Band, Pep Bands, and various small ensembles.

He been named a TI:ME Teacher of the Year, received the JEN Jazz Educator Award, the PA Citation of Excellence, and named a “member for life” of the PA Intercollegiate Bandmasters Association. He is a past Vice President of the Technology Institute for Music Educators, an associate member of the American Bandmasters Association,  a past President of the PA Intercollegiate Bandmasters Association, and a member of various education and music honoraries. He has written for numerous publications including DCI Magazine, Teaching Music Magazine, and was the Educational Editor for In-Tune Monthly Magazine for eight years; he has contributed hundreds of articles to various publications. He is an active conductor, trumpeter, clinician, and educator. Find out more at his website jpisano.com.

#biography #bio #josephmpisano #josephpisano #musiced #musiceducation #industryleader