PDA

View Full Version : Is it just me



60pan
Tue Oct 8th, 2013, 10:45 AM
?

Filo
Tue Oct 8th, 2013, 11:16 AM
I would say the site has been hacked (I have seen it twice today - once on a mobile device, once on Windows 7). Probably, and I am just guessing, it was hacked by xroot at hacking for live dot org. Just a feeling. Hopefully it is one of those white hat hacks meant to expose, but not exploit, a vulnerability. Maybe even script kiddies.

birchyboy
Tue Oct 8th, 2013, 11:23 AM
It has been working ok for me.

TurboGizzmo
Tue Oct 8th, 2013, 11:34 AM
go here http://www.cosportbikeclub.org/forums/ and it shows "hacked" assume it was a index.<something> left over from the forum software install.....but otherwise you go here http://www.cosportbikeclub.org/forums/forums.php and it all loads fine....

TurboGizzmo
Tue Oct 8th, 2013, 12:50 PM
Maybe made use of this....http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/3991423-potential-vbulletin-exploit-vbulletin-4-1-vbulletin-5

97ThunderCat
Tue Oct 8th, 2013, 01:27 PM
What kind of fucking loser hacks a low-traffic motorcycle forum? Ughhh lol

Generic
Tue Oct 8th, 2013, 02:10 PM
They just run scans for anyone running the VBB code and exploit it. Ideally they are hoping to find a forum of actual interest.

rforsythe
Wed Oct 9th, 2013, 06:59 PM
Maybe made use of this....http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/3991423-potential-vbulletin-exploit-vbulletin-4-1-vbulletin-5

No, I removed that directory. I think there's another one affecting VB4 though that hasn't been disclosed. In any event, I won't be able to reset things until tomorrow, so the front page gets to stay pwned for now.

TurboGizzmo
Wed Oct 9th, 2013, 08:31 PM
No, I removed that directory. I think there's another one affecting VB4 though that hasn't been disclosed. In any event, I won't be able to reset things until tomorrow, so the front page gets to stay pwned for now.

OK the only other one I know is hot right now involves using the upgrade.php page.....

Filo
Wed Oct 9th, 2013, 08:40 PM
No, I removed that directory. I think there's another one affecting VB4 though that hasn't been disclosed. In any event, I won't be able to reset things until tomorrow, so the front page gets to stay pwned for now.

Is it possible that posting the admin user name/password combination at the bottom of some R-rated Hentai 4Chan post was, maybe, not the best idea?

rforsythe
Thu Oct 10th, 2013, 09:35 PM
OK the only other one I know is hot right now involves using the upgrade.php page.....

Yeah, I looked at what I think was their 'sploit, hopefully patching to the latest version just released fixes it.


Is it possible that posting the admin user name/password combination at the bottom of some R-rated Hentai 4Chan post was, maybe, not the best idea?

You make it sound like 4chan isn't a reputable site...

Rabbie303
Fri Oct 11th, 2013, 09:54 AM
Hey I like the new landing page...Oh wait!

j0ker
Fri Oct 11th, 2013, 01:19 PM
Glad you are back up. That script kiddie hacker shit was very annoying.

TinkerinWstuff
Sat Oct 12th, 2013, 08:36 PM
Vfrworld got hit this week too.