Potential hackers have uploaded images to our OJS

Since we were recently informed by the system administrators that our website is also on the list where hackers publish their achievements http://www.zone-h.org/archive/filter=1/fulltext=1/domain=uni-lj.si, I am interested in when and who creates subfolders in the images folder http://ojs.aas.bf.uni-lj.si/ public/site/images/ with the name of their username and uploads files, such as images. We have discovered four subfolders created by hackers where they uploaded images of propaganda hacking material. Since this happened in 2021, 2020, and 2017, I do not think they had bad intentions since they did not cover our websites with their images.
I found these four usernames in OJS and disabled them. Is there anything else I can do?

We are currently using OJS version

Kind regards,

Hi @aas ,

This topic has already been discussed on the forum:

If you do a search in the forum you will get several post about he same thing.
I`m looking for the post that was made from PKP about this, but I can´t find it.
Bu it doesn´t represent a potential risk, it´s just annoying.

And by the way, v 2.x is obsolete, yo need to upgrade.

1 Like

Hi @dagosalas
Thanks for the quick reply and additional discussion on this topic. I searched the forum, but found nothing … I obviously entered irrelevant words.

Also, take a look around here:

  • D.

Hi @dagosalas
Thank you very much for the additional link with instructions on how to protect our system.

@aas @dagosalas,

Just an FYI, here is the post that PKP did on this, a little while back: https://pkp.sfu.ca/2017/04/12/regarding-recent-ojs-defacement-attacks/

PKP Team


Thanks @rcgillis !!! This url is the one I was looking for :smiley:

Thank you very much @rcgillis for link! :+1:

This topic was automatically closed after 23 hours. New replies are no longer allowed.