| Author |
Message |
DereksDontRun 
|
|
Post subject: scuk hacked
 Posted: Dec 28, 2010 - 05:16 PM
|
|
First post: Mar 09, 2009
Total posts: 1723
Location: The port of Stock
Status: Offline
|
|
great the webby is back - according to the news you think you've been hacked...
dare I ask what info you think might have been accessible and taken? pw'd change session for everyone or what? |
_________________
struggle with forums?
|
| |
|
|
|
 |
Berters
|
|
|
Post subject: RE: scuk hacked
Posted: Dec 28, 2010 - 05:50 PM
|
|
First post: Nov 03, 2010
Total posts: 179
Location: Herts.
Status: Offline
|
|
| 'Hack' is such a vague verb. Any more details on how they gained access and what they were up to? |
|
|
| |
|
|
|
|
|
winterfunman
|
|
|
Post subject: RE: scuk hacked
Posted: Dec 28, 2010 - 06:33 PM
|
|
First post: Apr 20, 2008
Total posts: 8914
Location: BANSKO ..........Bulgaria
Status: Offline
|
|
|
|
|
|
|
Cuillin
|
|
|
Post subject: Re: RE: scuk hacked
Posted: Dec 28, 2010 - 06:51 PM
|
|
First post: Nov 08, 2010
Total posts: 120
Location: Edinburgh
Status: Offline
|
|
|
winterfunman wrote:
trace them and kill them who are responsible
Goneboarding? |
|
|
| |
|
|
|
|
|
TaskMaster
|
|
|
Post subject: RE: Re: RE: scuk hacked
Posted: Dec 28, 2010 - 07:01 PM
|
|
First post: Sep 03, 2010
Total posts: 914
Status: Offline
|
|
| Yea can you please verify how the site was breached and what info was accessed? |
_________________
www.satanscircus.co.uk
|
| |
|
|
|
|
|
tortyv
|
|
|
Post subject: RE: Re: RE: scuk hacked
Posted: Dec 28, 2010 - 10:08 PM
|
|
First post: Oct 15, 2009
Total posts: 4046
Location: Luton, UK
Status: Offline
|
|
| Why would someone want to hack into scuk?? |
_________________
"and fatigues soon ignored, as your feet hit the board, or the beat hits the floor, these are the moments that we live for"
|
| |
|
|
|
|
|
winterfunman
|
|
|
Post subject: RE: Re: RE: scuk hacked
Posted: Dec 28, 2010 - 10:16 PM
|
|
First post: Apr 20, 2008
Total posts: 8914
Location: BANSKO ..........Bulgaria
Status: Offline
|
|
|
|
|
|
|
rsands
|
|
|
Post subject: RE: Re: RE: scuk hacked
Posted: Dec 28, 2010 - 10:24 PM
|
|
First post: Nov 27, 2010
Total posts: 32
Status: Offline
|
|
| Personal info can be grabbed, etc. However if for example scuk was hacked it can be used to breach the whole server which may (not sure if scuk is a dedicated server as not infront of pc) then be used to host attacking software, steal other websites user data, credit card details and much more. If scuk was not secure or another domain on same server (if not dedicated), then it leads to a world of problems |
|
|
| |
|
|
|
|
|
craignixon
|
|
|
Post subject:
Posted: Dec 28, 2010 - 10:50 PM
|
|
First post: Oct 07, 2007
Total posts: 3307
Location: Nottingham
Status: Offline
|
|
Before you all panic people, wait for Dunx. It may be he's just using the word 'hacked' to mean SCUK got hit by a Denial of Service attack and it knocked everything over.
Don't start the firesale just yet! |
_________________
Bok! Bok!
|
| |
|
|
|
|
|
limawhiskey
|
|
|
Post subject:
Posted: Dec 28, 2010 - 11:54 PM
|
|
First post: Dec 11, 2009
Total posts: 19
Status: Offline
|
|
If you use the same username / password here as on other sites, I would take steps to change them especially if it's email, facebook, etc.
Not just in the light of being "hacked", it's generally a good idea anyway. |
|
|
| |
|
|
|
|
|
DereksDontRun
|
|
|
Post subject:
Posted: Dec 29, 2010 - 01:02 AM
|
|
First post: Mar 09, 2009
Total posts: 1723
Location: The port of Stock
Status: Offline
|
|
|
craignixon wrote:
Before you all panic people, wait for Dunx. It may be he's just using the word 'hacked' to mean SCUK got hit by a Denial of Service attack and it knocked everything over.
Don't start the firesale just yet!
Exactly why I posted m8 - kinda as a reminder to Dunx to explain gravity (or lack of) of situation. a "hack" can be anything from an edited index.html to change some text etc to full on sql admin password swipe along with sql backup (and thus all our email addresses, login password and personal info - all be it encrypted) and then sometimes a "gift" is left of hidden sh1t all over the server. happened to one of my websites running a phpnuke forum - they installed a load of sh1t which initially kept itself alive (re-replicating itself - think it was injected in the sql-database somehow as it would only stop with a database backup) and more annoyingly added a credit card phishing "hub" that grabbed info from other websites and forwarded it on to god knows where... |
_________________
struggle with forums?
|
| |
|
|
|
|
|
nickmotture
|
|
|
Post subject:
Posted: Dec 29, 2010 - 09:26 AM
|
|
First post: Jan 09, 2006
Total posts: 10414
Location: Washington DC USA
Status: Offline
|
|
|
|
|
|
|
Insano_Deyno
|
|
|
Post subject:
Posted: Dec 29, 2010 - 09:29 AM
|
|
First post: Jul 23, 2010
Total posts: 882
Location: West Midlands
Status: Offline
|
|
| I'm afraid they'll steal my good looks, quick wit, and great ideas. |
_________________
pertinky@GoneBoarding
|
| |
|
|
|
|
|
BillyBenbo
|
|
|
Post subject:
Posted: Dec 29, 2010 - 09:52 AM
|
|
First post: Sep 12, 2008
Total posts: 93
Location: Doncaster UK
Status: Offline
|
|
|
limawhiskey wrote:
If you use the same username / password here as on other sites, I would take steps to change them especially if it's email, facebook, etc.
Not just in the light of being "hacked", it's generally a good idea anyway.
TBH if passwords are kept clear text on this server then security needs to be looked into in a big way, Not only are people enter personal email addresses and using the site to link of to boardshops,
Looking at the SCUK website TBH i suprised its not being constantly hacked.......... Using old PHP forum, open SSH to everyone the server is a ticking time bomb.
In less than 5 minutes ive managed to ascertain who is hosting the domain where the server is located in the uk, What ports are open what OS the box is running and what apache version is running. I could probably find the data center room given another 15 and rack location.
If it has been a DOS attack then an IDS needs to be implemented to stop this type of behaviour however a DDOS is much more tricky there is equipment that can stop these but unless every SCUK user want to pay like 100 quid a year i doubt they can afford it,
On a contuctive note though, Dunx if you would like me to send you some details i can mate |
_________________
Do or Don't - Which one will always be the regretful one!
|
| |
|
|
|
|
|
nickmotture
|
|
|
Post subject:
Posted: Dec 29, 2010 - 10:02 AM
|
|
First post: Jan 09, 2006
Total posts: 10414
Location: Washington DC USA
Status: Offline
|
|
|
|
|
|
|
|
Snowboard Club 
FAQ
Search
Register
Log in to check your private messages
Log in
Maximize
RSS Feed
...ppl hack things for no good reason , just possibly unlucky perhaps
