Hello there,
Someone is uploading some malicious files remotely on my wamp server. Investigation on our side reveal that this encrypted file is sending bulk emails and causing mysql to hang (but not sure). Restart of WAMP is needed in order to restore it but its happening on daily basis at our night times and attacked is using random IP addresses so no way to block it. I delete such files and it runs good for couple of days and then it all starts again and again.
What could be the reason and how someone is able to upload files in different directories inside WWW folder of WAMP without any authorize access?
I wish I could upload file here but there isn't option to upload file. Any help will be highly appreciated.
Thank you
Someone is uploading some malicious files remotely on my wamp server. Investigation on our side reveal that this encrypted file is sending bulk emails and causing mysql to hang (but not sure). Restart of WAMP is needed in order to restore it but its happening on daily basis at our night times and attacked is using random IP addresses so no way to block it. I delete such files and it runs good for couple of days and then it all starts again and again.
What could be the reason and how someone is able to upload files in different directories inside WWW folder of WAMP without any authorize access?
I wish I could upload file here but there isn't option to upload file. Any help will be highly appreciated.
Thank you