Cyberduck Mountain Duck CLI

#9022 closed defect (thirdparty)

Cyberduck 4.7.1 hacked?

Reported by: Owned by:
Priority: highest Milestone:
Component: core Version: 4.7.1
Severity: critical Keywords: Hacked
Cc: Architecture:



I kept getting my web sites hacked, and malicious files uploaded to my sites. This has been going on for months. Today my web hosting company and I discovered the source of the problem may be CYBERDUCK. Even after we changed the passwords (again) today right after I log in with Cyberduck "there were legit sign-ins from Nigeria and Malaysia". We suspect Cyberduck may be sending the log-in info to a third party. Have you had any similar cases? Is there a way we can see if Cyberduck has been corrupted? Thanks, Jeff (cc: Hosting)

Change History (2)

comment:1 Changed on Sep 22, 2015 at 9:23:34 AM by dkocher

  • Resolution set to thirdparty
  • Status changed from new to closed

You better change your hosting service provider.

comment:2 Changed on Sep 23, 2015 at 9:49:58 PM by

So there is no way Cyberduck can be hacked?

Note: See TracTickets for help on using tickets.