Page 1 of 6 123 ... LastLast
Results 1 to 20 of 114
Like Tree21Likes

Thread: Site Hacked

  1. #1
    Super Moderator LivinLOS's Avatar
    Join Date
    Mar 2013
    Posts
    14,153

    Site Hacked

    Seems we got hit a couple of hours ago.. Of course the timing was minutes after I went to bed.

    Anyway.. Restored from an incremental backup and the database seems OK..

    I think I know the security exploit.. Fixing it now..

    So much for the Myanmar Muslim hacker force

  2. #2
    Senior Member slampay's Avatar
    Join Date
    Apr 2013
    Posts
    1,616
    Quote Originally Posted by LivinLOS View Post
    Seems we got hit a couple of hours ago.. Of course the timing was minutes after I went to bed.

    Anyway.. Restored from an incremental backup and the database seems OK..

    I think I know the security exploit.. Fixing it now..

    So much for the Myanmar Muslim hacker force
    Check. Check.

  3. #3
    Senior Member Pablo's Avatar
    Join Date
    Apr 2013
    Posts
    3,693
    Fuckin' mussies!

  4. #4
    Senior Member Thin White Duke's Avatar
    Join Date
    Apr 2013
    Location
    Afrique du Sud
    Posts
    2,887
    I blame Syria

  5. #5
    Senior Member faultytowers's Avatar
    Join Date
    Mar 2013
    Posts
    1,496
    Thought it must have been my computer , first couple of attempts to load forum got the "mad mozzies !" but everything seems to be running O.K now.

    Even checked Facebook to see if anyone had the same problem.

  6. #6
    Super Moderator LivinLOS's Avatar
    Join Date
    Mar 2013
    Posts
    14,153
    Quote Originally Posted by faultytowers View Post
    Even checked Facebook to see if anyone had the same problem.
    Been meaning to start an AI facebook page.. Would be worth it for things like that..

  7. #7
    Senior Member faultytowers's Avatar
    Join Date
    Mar 2013
    Posts
    1,496
    Quote Originally Posted by Thin White Duke View Post
    I blame Syria
    Putin is blaming Obama !

  8. #8
    K2
    K2 is offline
    Super Moderator K2's Avatar
    Join Date
    Mar 2013
    Posts
    1,543
    Good its fixed ... could you (Sef) detect where the hack originated from?
    Its My Life .....!

  9. #9
    Member
    Join Date
    Apr 2013
    Posts
    85
    Yes, the Muslims arseholes were on here when I got in from work today. Very pleased to see the forums back up & running as normal, after all the hard work that's been put into this site.

  10. #10
    Senior Member faultytowers's Avatar
    Join Date
    Mar 2013
    Posts
    1,496
    Quote Originally Posted by LivinLOS View Post

    I think I know the security exploit.. Fixing it now..
    Discussion about this on vBulletin forum.

    Site hacked by Myanmar Muslim Cyber Force - vBulletin.org Forum

  11. #11
    Senior Member Mr. Smiley's Avatar
    Join Date
    Apr 2013
    Location
    Nakhon Ratchasima
    Posts
    442
    So do we need to change/reset our passwords or anything?

  12. #12
    Senior Member Bacon's Avatar
    Join Date
    Apr 2013
    Posts
    797
    ןooʇsɹɐq ʎɯ uo ʞɔɐq eɯ ʇnd esɐeןd sıɥʇ pɐeɹ uɐɔ noʎ ɟı

  13. #13
    Senior Member soupdragon's Avatar
    Join Date
    Mar 2013
    Location
    Bang Tao
    Posts
    2,367
    I just donated a load of clothes to Myanmar Muslim refugees, this is the thanks you get. Tch.

  14. #14
    Super Moderator LivinLOS's Avatar
    Join Date
    Mar 2013
    Posts
    14,153
    Quote Originally Posted by Mr. Smiley View Post
    So do we need to change/reset our passwords or anything?
    Passwords are encrypted.. Its not a bad idea but I dont 'think' its required..

    I have found some users that had raised privs... I will attempt to scan the templates too but thats not so simple.

  15. #15
    Senior Member
    Join Date
    May 2013
    Posts
    687
    Any ideas how they hacked it ?

    I had some issues with wordpress sites this weekend by the Pakistan branch which was not happy about ! - After bolstering security should be ok now.

    Havent used vbulletin but for wordpress things like hiding version used, limit login attempts etc. and lots of other stuff to prevent it

  16. #16
    Senior Member Dupree's Avatar
    Join Date
    Apr 2013
    Location
    Frithco
    Posts
    3,108
    Allah is good. Allah is all powerful....
    ôVote for Trump and grab them by the poosy "

  17. #17
    Super Moderator LivinLOS's Avatar
    Join Date
    Mar 2013
    Posts
    14,153
    Quote Originally Posted by dreamweaver View Post
    Any ideas how they hacked it ?
    I got an email a week ago that there was a security issue and to delete some files.. As I was travelling and on an iPad only I got lazy.. I am assuming thats how they made the initial access.

    My host (impressed I have to say) was able to very quickly rollback to a recent backup and retain the database.. So that 'should' have reverted all files to pre hack state, and I have manually culled the users who had been made admins, checked the files used in the attack (now clean) and of course made the change to delete the files initially used... This is a big time saver for me as a forum re-install and reconfig from backups would be a fair bit of hassle.

    I am concerned that theres still hooks, but logically if the files are reverted, and the Mysql is cleaned up, I am hopeful that its now secured. I assume we will see a VB update to cover this hole.

    Even while the site was defaced, if you used http://asia-info.co/forums/search.ph...e=vBForum_Post or other scripted links, the forum was still working 'behind' the defacement.

  18. #18
    Senior Member
    Join Date
    May 2013
    Posts
    687
    Yes depends how they do it - if they get into .htaccess then they can redirect all pages which is what they did on 2 of my sites, the others were just index.php.

    Might also be some additional security add-ons you can get to help bolster things up slightly and might be worth looking into.

    Sounds like you have a good host like mine where you can restore to very regular back ups which is very handy....but the whole thing is definitely a massive inconvenience !!

  19. #19
    Senior Member
    Join Date
    May 2013
    Posts
    687
    Not sure if this something like this is any good.........but will speak to a someone to get something recommended for vbulletin

    vBSecurity - DragonByte Tech | vBulletin Mods & Addons

  20. #20
    Senior Member
    Join Date
    Apr 2013
    Posts
    205
    Glad forum is back, the hacked site was kinda boring 555

Page 1 of 6 123 ... LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •