I am starting another Joomla 1.5.23 upgrade to 2.5 for security reasons. Before I started I noticed “payday loans” hyperlink going to “iolanipalace.org”.
This was not a module area it was in the index.php file in the template. I went to to the template to see added text. I highlighted the text in blue.
I googled “iolanipalace.org” and came up with a link I didn’ want to click on.
UK Payday Loans from 516cash. Up to £1000 in 15 minutes! Instant Approval! No Transfer Fees, Apply Now!
Seems like a scam lead through Cross-Site Scripting. I am hoping the damage isn’t severe.
Upgrade your Joomla 1.5 sites before it is too late.