Kryptronic Software Support Forum

You are viewing this forum as a guest. Login to an existing account, or create a new account, to reply to topics and to create new topics.

#1 03-11-2020 18:55:10

Shopper
Member
Registered: 09-10-2007
Posts: 94

V8 User Account Purge

In the last days I found out, that from the table core_users users have been deleted - the complete table row - not by the users themselve, but through an internal script or by an outside attack.
There had been new users with chaotic information in the users table, which we had never before.

Today there was a new user in the table with chaotic information and at the same time more than 200 users had been deleted.
The last days I thought it must be something internal. But now I suspect it's an outside attack.

How to proceed? If you need more information, please let me know.
It seems, there are also further tables affected like ecom_cat, but I don't have an overview yet.

Offline

 

#2 03-13-2020 09:57:29

webmaster
Administrator
From: York, PA
Registered: 04-20-2001
Posts: 19798
Website

Re: V8 User Account Purge

Using System / Component / Settings / Cron Settings, check to see how long unused customer accounts are stored.  My guess is that old accounts are being purged based on that setting (which you can turn off).  Note: This is not a thing in K9.


Nick Hendler

Offline

 

#3 03-14-2020 08:15:09

Shopper
Member
Registered: 09-10-2007
Posts: 94

Re: V8 User Account Purge

It was set to 1 year and I changed it to 2 years now. But many of the deleted accounts have been not older than half a year. Nothing has been lost - I had a backup.

Offline

 

#4 03-16-2020 10:12:29

webmaster
Administrator
From: York, PA
Registered: 04-20-2001
Posts: 19798
Website

Re: V8 User Account Purge

Keep an eye on it.  I would bet the timestamps for the last update on those accounts exceeded the cutoff time for account purge.


Nick Hendler

Offline

 

Board footer