Results 1 to 10 of 45
Threaded View
-
04-23-2015, 11:53 PM #13
It was an exploit in a orphaned software we still use for legacy reasons and we missed a security advisory because an email address wasn't updated to our current one. (It's nothing like the youtube video that was posted where they access the full server.)
It's a silly hack - replaced the home page with a different one, nothing else was compromised (we have a reasonably good security to prevent big bad things.) They left large footprints in the process so it wasn't anybody moderately knowledgeable (there are ways to leave much smaller footprints for this specific type of attack.)
Trivial to restore as well but we had to make sure the exploit was closed, verify the extent of the compromise and double check that everything is fine before allowing everybody back in again. And that takes time regardless of the reason for doing it.
-
The Following 14 Users Say Thank You to gugi For This Useful Post:
32t (04-24-2015), Bruno (04-24-2015), Crawler (04-24-2015), criswilson10 (04-24-2015), cudarunner (04-24-2015), Geezer (04-29-2015), JimmyHAD (04-25-2015), jmercer (04-24-2015), OCDshaver (04-24-2015), Phrank (04-24-2015), Prahston (07-05-2015), puketui41 (04-24-2015), ScottGoodman (04-26-2015), Wolfpack34 (04-24-2015)