...
The most immediate concern at this point is malware and user vulnerabilities. However, the more critical issue is But the larger concern is how to address the vulnerabilities to prevent this from happening again.
Assessment from 10 Lb:
TDIC is on a version of DNN that is right in the middle of many security vulnerabilities; 10 Lb said “right in the middle of the worst.” The top priority is upgrading the site to the most recent version of DNN.
...
Set up clean instance of TDIC from the oldest backup, with no content (conventional wisdom would indicate the breach actually occurred prior to 9/8/2020, and the hackers waited a certain period of time to exploit it)
Remove any problematic modules; upgrade those that can be upgraded
Export PackFlash content into Easy DNN News or other secure module
Upgrade DNN
When the site is upgraded/stable, import the content and assets
Next Steps, 10 Lb:
Today (9/9):
Mark is contacting Geoff to get the oldest backup possible of the site and will create a new instance on his local machine
...
Mark and Chris will work through the audit of the modules to recommend which ones should be phased out or upgraded, which will give them a good idea of how long it will ultimately take to upgrade the site. Due to the severity of the situation they will be prioritizing this work and will work through the weekend so they can get us an estimate and timeline of next steps by Monday (or early next week, depending on the audit). They will keep us updated about their findings.
Next Steps, CDA:
Geoff:
Provide backup/support to Mark as requested
Assist 10 Lb with getting access to the DNN store or