Web Site Hack
- Weygold
- Level 2
- Posts: 31
- Joined: Sun Nov 04, 2001 4:00 pm
- Location: Orange, CA
- Contact:
Web Site Hack
There was an exploit in the board scripts that was used to overwrite EVERY php and html file in the entire web site last night.
The site should be back up now and working properly. The exploits have been patched, and all themes for this board have been removed until I can get around to patching those as well.
The site should be back up now and working properly. The exploits have been patched, and all themes for this board have been removed until I can get around to patching those as well.
- Librarian
- Moderator
- Posts: 763
- Joined: Mon Nov 05, 2001 4:00 pm
- Location: Tustin, CA
- Contact:
Apparently, we are not alone.
Santy worm defaces thousands of sites
http://www.theregister.co.uk/2004/12/21/santy_worm/
By John Leyden
Published Tuesday 21st December 2004 23:38 GMT
A worm which attacks web servers running the popular phpBB discussion forum software to deface vulnerable systems spread widely across the net today.
The Santy worm searches for vulnerable forum sites using Google. When a suitable target is found, Santy uses a remote exploit to gain access and deface it before resuming its scanning activity. Content on defaced sites is replaced by the following text string.
"This site is defaced!!!" NeverEverNoSanity
Apart from defacing infected sites with this text, the worm has no payload. It will not infect PC used to view infected sites. F-Secure, the Finnish anti-virus firmm estimates there more than one million sites use the vulnerable phpBB software, of which tens of thousands have already been defaced. Users of phpBB are advised to update to version 2.0.11. ®
http://www.theregister.co.uk/2004/12/21/santy_worm/
By John Leyden
Published Tuesday 21st December 2004 23:38 GMT
A worm which attacks web servers running the popular phpBB discussion forum software to deface vulnerable systems spread widely across the net today.
The Santy worm searches for vulnerable forum sites using Google. When a suitable target is found, Santy uses a remote exploit to gain access and deface it before resuming its scanning activity. Content on defaced sites is replaced by the following text string.
"This site is defaced!!!" NeverEverNoSanity
Apart from defacing infected sites with this text, the worm has no payload. It will not infect PC used to view infected sites. F-Secure, the Finnish anti-virus firmm estimates there more than one million sites use the vulnerable phpBB software, of which tens of thousands have already been defaced. Users of phpBB are advised to update to version 2.0.11. ®
- davisherm
- Moderator
- Posts: 977
- Joined: Thu Dec 18, 2003 7:00 pm
- Location: The Wood
- Contact:
- Librarian
- Moderator
- Posts: 763
- Joined: Mon Nov 05, 2001 4:00 pm
- Location: Tustin, CA
- Contact:
- Stormy
- Moderator
- Posts: 733
- Joined: Sun Jan 18, 2004 6:11 pm
- Location: Pittsburgh Area, PA
- Contact:
I missed the actual attack portion of the show - been fighting the flu/cold and have been on rather sporadically. At least it didn't have a payload to attack users too.
Oh, I don't see spell check yet - are you going to put it back or was it one of the vunerable areas?
Stormy
Oh, I don't see spell check yet - are you going to put it back or was it one of the vunerable areas?
Stormy
Stormy ~~}~}-:>
Aut viam inveniam aut faciam
Aut viam inveniam aut faciam
- Wbdsgnr1
- Moderator
- Posts: 457
- Joined: Mon Nov 18, 2002 1:16 pm
- Location: Glasgow, KY
- Contact:
- Librarian
- Moderator
- Posts: 763
- Joined: Mon Nov 05, 2001 4:00 pm
- Location: Tustin, CA
- Contact:
- Librarian
- Moderator
- Posts: 763
- Joined: Mon Nov 05, 2001 4:00 pm
- Location: Tustin, CA
- Contact:
- Wbdsgnr1
- Moderator
- Posts: 457
- Joined: Mon Nov 18, 2002 1:16 pm
- Location: Glasgow, KY
- Contact:
- davisherm
- Moderator
- Posts: 977
- Joined: Thu Dec 18, 2003 7:00 pm
- Location: The Wood
- Contact:
- Wbdsgnr1
- Moderator
- Posts: 457
- Joined: Mon Nov 18, 2002 1:16 pm
- Location: Glasgow, KY
- Contact:
- Librarian
- Moderator
- Posts: 763
- Joined: Mon Nov 05, 2001 4:00 pm
- Location: Tustin, CA
- Contact:
- Wbdsgnr1
- Moderator
- Posts: 457
- Joined: Mon Nov 18, 2002 1:16 pm
- Location: Glasgow, KY
- Contact:
i didnt get an email from you at that address..... but I did get 2 ecards from you from the webmistress@paganlibrary.com address.
And i called to thank you, so maybe YOU need to check your voicemail and try calling me back! ha ha
blessed be
And i called to thank you, so maybe YOU need to check your voicemail and try calling me back! ha ha
blessed be
<img>
Who is online
Users browsing this forum: No registered users and 3 guests