COMPUTER ATTACK. Security Patch For Helix 3 On Joomla 3.10 - Question | JoomShaper

COMPUTER ATTACK. Security Patch For Helix 3 On Joomla 3.10

MS

MAURICIO SANCHEZ

SP Page Builder 16 hours ago

Hello JoomShaper Support Team,

One of my Joomla 3.10 websites, which uses Helix 3 and SP Page Builder PRO 3.8.10, suffered a cyber attack today.

After investigating the incident, my hosting provider informed me that the main vulnerability is related to com_sppagebuilder and recommended updating it urgently.

I noticed that JoomShaper recently released plg_system_helix_3_1_2 for newer versions of Helix 3.

My question is:

Is there any updated security patch or plugin for the Helix 3 framework available for Joomla 3.10 installations, or any recommended security fixes for Helix 3 in Joomla 3?

Thanks for your help.

0
7 Answers
Atick Eashrak Shuvo
Atick Eashrak Shuvo
Accepted Answer
Support Agent 16 hours ago #227516

Hi,

Thank you for contacting us, and we sincerely apologize for the inconvenience caused.

Please note that the recently disclosed security vulnerability in SP Page Builder affects SP Page Builder 4 and later versions only. SP Page Builder 3.x is not affected by this specific issue.

Regarding Helix 3, we recommend downloading and installing the latest Helix 3 Plugin and Ajax Plugin for Joomla 3 from the following page:

https://www.joomshaper.com/downloads/template/helix3

You can install both packages using Joomla's Extensions Installer to ensure your Helix 3 installation includes the latest available fixes and improvements.

0
MS
MAURICIO SANCHEZ
Accepted Answer
16 hours ago #227520

Thank you very much for your response.

0
MS
MAURICIO SANCHEZ
Accepted Answer
16 hours ago #227521

I have installed the plugins. Let's hope everything goes well. Additionally, we are working on the new site with Joomla 6, Helix 3 and SP PAGE BUILDER PRO 6.6.2. Any recommendations that we should take into account?

0
Atick Eashrak Shuvo
Atick Eashrak Shuvo
Accepted Answer
Support Agent 15 hours ago #227522

Here's a professional response:

You're welcome. I hope everything runs smoothly after the updates.

For your new Joomla 6 website, my recommendation is to avoid using a Helix 3-based template. While Helix 3 is still supported, it is no longer under active development and is not designed for the latest Joomla versions.

Instead, we recommend choosing a Helix Ultimate-based template. Helix Ultimate is fully compatible with Joomla 6, is actively maintained, and receives regular updates, new features, performance improvements, and security fixes.

Since you're already using SP Page Builder Pro 6.6.2, pairing it with a Helix Ultimate-based template will provide the best compatibility and ensure your site is built on our current, actively developed framework.

0
AS
Alexandre Santos
Accepted Answer
15 hours ago #227525

Did you manage to remove the "hacked" message after the Helix3 update?

0
MS
MAURICIO SANCHEZ
Accepted Answer
15 hours ago #227526

The Hakeado message was removed when restoring a previous backup and the site worked there. After that I updated the plugins.

0
Paul Frankowski
Paul Frankowski
Accepted Answer
Senior Staff 11 hours ago #227556

Joomla 3 is not supported anymore, the same as Windows 97 etc.

Now It's time to consider TWO STEPS AHEAD. From J3 to Joomla 5 at least. Also becuase AI can find new holes in Joomla 3 core in minutes.


Yes, using extra Firewall component may reduce risk after all needed Helix updates.

0