Hi Guys.
I am facing multiple phishing attacks on my websites create in yii2 framework.
It looks like someone hosted malicious code on my website,
Following are the messages it gets from my hosting provider.
hXXp www[.]domain[.]com/storage/config/log/wellG/Best_Wellg/en/MEEE/long/online-account/security/auth/1/l2[.]php
hXXp www[.]domain[.]com/storage/config/log/wellG/Best_Wellg/en/MEEE/long/online-account/security/auth/1/login[.]php
hXXp www[.]domain[.]com/storage/config/log/wellG/Best_Wellg/en/MEEE/long/online-account/security/auth/1/login[.]php?be59203288cbcebc31d5ef05efb90ca7-be59203288cbcebc31d5ef05efb90ca7-be59203288cbcebc31d5ef05efb90ca7be59203288cbcebc31d5ef05efb90ca7-be59203288cbcebc31d5ef05efb90ca7-be59203288cbcebc31d5ef05efb90ca7be59203288cbcebc31d5ef05efb90ca7-be59203288cbcebc31d5ef05efb90ca7-be59203288cbcebc31d5ef05efb90ca7
hXXp www[.]domain[.]com/storage/config/log/wellG/Best_Wellg/en/MEEE/long/online-account/security/auth/1/inner_page[.]html.
Can someone help me to protect my website from such an attack?