mg33
- Started
- Last post
- 15 Responses
- ian
Hey chief, seems your sites are down, some message there about a hacker attack...
I saw you comment on iso50's blog and wondered if it was the same mg33 from here, so clicked the link in your profile on there and on here, both addresses were hacked.
- Continuity0
'NMTD Turkish Army Of Cyber. Gave Serious Damage To Your Web Site ;)
Will Now ?'
Hacking win, grammar fail.
Turkish Army of Cyber ... is this like cybersex gang-rape?
- popfodders0
Attack of the cybertechnojazzfuckcunts
- mg330
Yeah, just fucking noticed this bullshit a few minutes ago. Didn't see this thread until now. Working with my host to figure this out.
- CygnusZero40
Lol WTF is with that song?
- mg330
It's funny - I had just pulled the site up to add a new post, walked away and from the other room I was like "what is this weird music?" I'd been browsing stuff on itunes but I sure as hell knew it wasn't Gold Panda!
- mg330
And, is this what people in other countries get off on? Hacking sites with barely viewed blogs about music and other stuff? :D
- registe0
you obviously have a venerability in your blog they are detecting and exploiting,
more of a sniffer software search and notify. then after they gain access, they put this sign up like they're knowledgeable.
i'm sure even the display board they put in place was edited from a beginners guide to hackers template
fix the blog, kiss the problems goodbye
- raf0
I'd appreciate if you told us what the loophole was—if you know—in order to secure ours.
admin/admin?
admin/asdfg?:D
- vaxorcist0
this sucks.... and I don't mean to be belittling or accidently insulting....
One practice is to remove all code in the HTML header that indicates which version of wordpress you're using. Some script kiddie code just spiders google search results for "blog" and then checks the source code for WP version tags, if that page is a vurnable version, then the injection code automatically attacks your site, so yes, it's semi-random, not a direct attack on a particular site.
I have no idea if this is actually what happened, but it did happen to a friends site once... we tweeked his HTML in the wordpress templates and it didn't happen again, after a re-install....
- mg330
I'll keep you all posted. My host can restore a full site backup, but obviously I'm going to need to fix the issues that allowed this to happen.
- mg330
http://www.noupe.com/how-tos/wor…
Something good I found with a list of Wordpress security suggestions.
- The famous 403 Forbidden list the Mayan prophecy mentioned...raf
- mg330
Back up and running. Not sure if it was the exact cause, but for whatever reason lots of files had security permission set to 7 5 5 and not 6 4 4, so, quickly changing them.
- mg330
FUCK!
I wish people would quite fucking with my sites. Somehow the entire wordpress DB got deleted - no posts, no nothing. Host will have a backup but Christ almighty go annoy someone else!
- identity0
Ask the greeks how stubborn the Turkish are