Thread: Hacked?

Originally Posted by hoglahoo

How nice of them to tell us we need to patch our site

Yeah it was nice of them to mention at least twice for us to patch the hole we had. We should probably thank them. We probably not have notice (nor cared ), until they done the "heavy lifting" for us.

LOL l "look ma, my first script(taken from youtube)I am a bad @$$ hacka now"

It was an exploit in a orphaned software we still use for legacy reasons and we missed a security advisory because an email address wasn't updated to our current one. (It's nothing like the youtube video that was posted where they access the full server.)

It's a silly hack - replaced the home page with a different one, nothing else was compromised (we have a reasonably good security to prevent big bad things.) They left large footprints in the process so it wasn't anybody moderately knowledgeable (there are ways to leave much smaller footprints for this specific type of attack.)
Trivial to restore as well but we had to make sure the exploit was closed, verify the extent of the compromise and double check that everything is fine before allowing everybody back in again. And that takes time regardless of the reason for doing it.

Well a big thank you to all of you that give the time to keep the site up and running.

Yes, thank you for the quick fix.

Not going to lie, it made me think of a number of things, not the least of which was:

https://www.youtube.com/watch?v=BlTZyHV0kAY

Originally Posted by Phrank

Yup - was reading some post, clicked on another one, the site went dark, refreshed, and there was the hacker screen.

Did a brief search and found a YouTube page where the guy seems to be taking down a music site here:



Once upon a time, I would've wiped his hard drive after disabling his keyboard and mouse, downloaded most of his contact list and data and had fun with him for a few weeks, but that is not the path of light!

Good job, site was brought up very quickly and the, "Under Maintenance" notification was quickly as well - good job to all those involved in bringing back the biggest AD of all - SRP!

Phrank don't mess around. glad you're on our side.

Glad we have volunteers active, skilled, and willing enough to make same day repairs like this. thanks gugi and whoever else may have helped

Originally Posted by Phrank

Once upon a time, I would've wiped his hard drive after disabling his keyboard and mouse, downloaded most of his contact list and data and had fun with him for a few weeks, but that is not the path of light!

Don't worry, they read your post few minutes after you posted it. Not the sharpest tool in the shed as they've been trying to re-run the exploit all day long even though it clearly was gone within few minutes and wasn't coming back. That's why I waited until 8pm before posting here, wanted to confirm they're as dumb as they appeared to be.

Originally Posted by gugi

Don't worry, they read your post few minutes after you posted it. Not the sharpest tool in the shed as they've been trying to re-run the exploit all day long even though it clearly was gone within few minutes and wasn't coming back. That's why I waited until 8pm before posting here, wanted to confirm they're as dumb as they appeared to be.

Well, I'm not remotely computer savvy, so you and Phrank scare me. Phrank I'll try to remember never annoy you.
Gugi, if you'd like, I can take them out with the Amish virus!