Bam! We've been hacked...

Nick25 · May 2, 2008

fred13 said:
Because I have donated in excess of $100 to that site.

Before we can go about filing charges, we need to find out the ip address if the emails that were listed on the page when it was hacked.
And thats why hotmail should give up the ips, unless they support and safe haven hackers.

That means basically nothing to us, here... I still have no clue why you are including yourself as part of Michael Kovich's "we".
Unless you are a Staff Member or something on his site, which I don't think you are - because he said he is confused as to what is happening in this thread as well - then you should stop trying to involve yourself in other peoples' threads. It makes it harder to comprehend and assist the OP. And it's extremely annoying.
:tiphat:

Rockatteer · May 2, 2008

Nick25 said:
That means basically nothing to us, here... I still have no clue why you are including yourself as part of Michael Kovich's "we".
Unless you are a Staff Member or something on his site, which I don't think you are - because he said he is confused as to what is happening in this thread as well - then you should stop trying to involve yourself in other peoples' threads. It makes it harder to comprehend and assist the OP. And it's extremely annoying.

not to mention the bogus advice being given.

Email address aren't going to help you track down a hacker... You need to get the IP addresses from the access logs and trace it back to the ISP. Then notify the ISP so they can investigate from their end as well.

The most your probably going to get is that the ISP will close the users account.. if yoru able to find their real IP address.

lordtopcat · May 2, 2008

fred13 said:
Because I have donated in excess of $100 to that site.

Before we can go about filing charges, we need to find out the ip address if the emails that were listed on the page when it was hacked.
And thats why hotmail should give up the ips, unless they support and safe haven hackers.

That doesn't mean you are involved in any way, Fred.

RRR · May 3, 2008

fred13 said:
Because I have donated in excess of $100 to that site.

Hey fred, that might be the case but unless you're a member of staff at the OP's site then surely that is irrelevant? :shifty:

You also didn't explain who you were or what your connection was in the first instance..

Before we can go about filing charges, we need to find out the ip address if the emails that were listed on the page when it was hacked.
And thats why hotmail should give up the ips, unless they support and safe haven hackers.

But what's this "we" business. You're just confusing the issue and delaying any possible help that could have have been given to the OP

MichaelOmega · May 3, 2008

I think I have solved the problem!

I do not believe that Team 511 will be hacking us again

The first thing I did was look around in my list of modifications, and I found some suspect ones, which may have had something to do with it. I noticed that we had the [Sniper] Mood Manager, and that the word Sniper was seen several times on the "hacked version" of the site.

Also, I believe that Sakurachan may have been involved. And henceforth, she has been banned and her IP address has been blocked.

We took a lot of security measures after this, and have edited all of the directories accordingly, changed all of the passwords, upgraded everything, and we also made sure to get everyone involved in the repair process. So far, things are going just fine.

I would like to thank everyone for their support!

By the way, Fred13, we do appreciate your monetary support to IntellectToday, but please just sit-back and relax, we've got this covered

Sakurachan · May 3, 2008

Being banned means nothing on your part. proxy time.

I can easily change my IP address at will.

So quit assuming that I have took place with any of that retarded crap.

Any proof I took part? Think not.

SageStone · May 3, 2008

Please keep any issues you have with someone through private methods. We provide a PM system for this. Please do not continue such discussions in public, as it only leads to baiting, trolling, or flaming.

Thank You,
SageStone

fred13 · May 3, 2008

I also co-own the network that it is part of.
And to be honest. my affilation with the site is my own buisness, so please dont criticize it.

djbaxter · May 3, 2008

fred13 said:
I also co-own the network that it is part of.
And to be honest. my affilation with the site is my own buisness, so please dont criticize it.

It was your confusing posts in this thread that people were commenting on.

See also:

MichaelKovich said:
By the way, Fred13, we do appreciate your monetary support to IntellectToday, but please just sit-back and relax, we've got this covered

MichaelOmega · May 3, 2008

IntellectToday.com is not affiliated with any network.

Perhaps you are a bit confused?

Well, in an attempt to stay on topic, can anyone provide me with information on how to maintain the security of my site?

RRR · May 3, 2008

minstrel said:
It was your confusing posts in this thread that people were commenting on.

See also:

Seconded.

Anyway, glad to hear that the problem has been taken care of. However your comment about the mood manager concerns me - can you confirm, or otherwise, whether this mod caused the vulnerability which led to your site getting hacked, Michael?

Cheers

MichaelOmega · May 3, 2008

That's something I am still trying to figure out.

I can't say for sure. But, I do see a connection between the incident and the modification. For one, they both include references to a group known as sniper, and the incident occurred not long after installing the modification. After deleting it, we haven't had any problems.

Rockatteer · May 3, 2008

not to sound like a broken record.. but... You have full backups of both the forums database and the actual web site right?

Chaze · May 3, 2008

MichaelKovich said:
IntellectToday.com is not affiliated with any network.

Perhaps you are a bit confused?

Well, in an attempt to stay on topic, can anyone provide me with information on how to maintain the security of my site?

1) Keep your software up-to-date.
2) Make your passwords long and hard-to-guess. Alternate between capital and lower-case letters and use symbols such as '&', '$' and '@'.
3) Check up on your modifications' source websites to see if there are any security updates or warnings.
4) ALWAYS keep backups of your database on your computer.

lordtopcat · May 3, 2008

I've been using the Mood Manager for over 6 months and I've never had any problems with it.

It also has 1234 installs.

MichaelOmega · May 5, 2008

One of the hackers, net boy, just signed-up on my website. I've banned him, but I'm curious as to what he's up to now.

RRR · May 6, 2008

Report him to his ISP..

Bam! We've been hacked...

Nick25

Fan

Rockatteer

Devotee

lordtopcat

Adherent

RRR

Participant

MichaelOmega

Enthusiast

Sakurachan

Aspirant

SageStone

just david(:

fred13

Unconcentrated Pwnage

djbaxter

Tazmanian Veteran

MichaelOmega

Enthusiast

RRR

Participant

MichaelOmega

Enthusiast

Rockatteer

Devotee

Chaze

Habitué

lordtopcat

Adherent

MichaelOmega

Enthusiast

RRR

Participant