We require an expert in internet / server security to perform a security audit on our server and one particular https website it serves that was hacked recently. The server is a Centos server running Apache2, PHP5 and MySQL5.
We need to discover how the hacker gained access to the site and how to ensure it does not happen again. We will also need you to audit the PHP source code to advise if we are doing anything insecure and how to make it secure.
FYI - The hacker gained entry to a password protected area of the website and altered / deleted some data, as far as we can tell they did not gain access to the server itself.
Thanks for bidding.