Total Posts: 41
Atlanta, GA, USA
This afternoon I was checking the Online Customers view in the admin, and there were about 20 visitors in various parts of the /downloader/ directory. All the URLs they were in were similar to:
I quickly renamed the /downloader/ directory to something else with a long file name, temporarily, and it looks like it stopped them for now.
What are the hackers after in the downloader directory? Are there files there that could be attacked? I know this is where the Magento Connect Manager runs, but I don’t know if there are files there that would allow access to other site files, the database, etc.
Any advice on this would be greatly appreciated. And if there is a way to block access to these files, I’d like to know!