Accoding to my web hosting logs some one accesed the admin section of the catalog and went to one of my products update page. Is there any way into the system (back door ext) other then through the c-panel or /admin sign in?
My hoster is looking into any posible breaches on the c-panel. I changed my user name and password and notised a demo user group. I deleted demo user. Is this a user that was put in by you or by the hacker.
After looking at the paypal module I notesed that the first 3 charecter of the token were not there. thats the Y2- Is it supposed to be left off or did the hackers change it ????