menu 2
menu 4
menu 6
menu 8
menu 10
menu 12

Welcome Guest ( Log In | Register )

5 Pages V  1 2 3 > »   
Closed TopicStart new topic
> FeeVerte.net Absinthe Forums are back!, or, Hacker's Delight is deeeeeeeeeeelish
Kallisti
post Jul 30 2006, 06:42 PM
Post #1


Absinthusiast
**

Group: Supreme Advisor
Posts: 92
Joined: 8-June 05
From: El Cerrito, CA
Member No.: 1596



The questions you’re all dying to have answered:
  1. Yes, the forum was hacked.
  2. No, it was not hacked within the community. But there were some admin logs that initially led us to believe this might have been the case. The perp, probably some random script kiddie, found our site via google by searching on our invision version #. I have the server logs to prove it.
  3. Yes, we immediately upgraded to 2.1.7, the site should now be safe from related attacks. We kept the site down until we were very sure of the extent of the attack, what to do about it and how to fix it.
This was actually an Invision wide attack, many boards all over the net have been lost and damaged. We were lucky and escaped relatively unharmed.

Relatively?

Yes, because it does appear that the perp got access to the Admin CP and downloaded a backup of our database. What this means is that they may have access to all of our passwords.

What you need to do:

The admins have of course changed theirs, but we strongly recommend that all users change their passwords ASAP. If your password had anything in common with your email accounts, or any other accounts that could be connected with your account here, we strongly recommend that you change your passwords NOW.

Please feel free to contact us by PM or Email if you have any further questions or concerns. There may be a few UI bugs due to the recent upgrade. Please post about them or email and we’ll look into them.

Thank you,
Management


--------------------
IPB Image
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
Lord Stanley
post Jul 30 2006, 09:12 PM
Post #2


Vito Von Sawchuck
*****

Group: Members
Posts: 3156
Joined: 26-September 03
From: Northeast of the Midwest
Member No.: 73



I was wondering what the hell was going on.
Thanks for getting things back up and running.


--------------------
Faith is believing what you know ain't so. - MT
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
Marc
post Jul 30 2006, 09:22 PM
Post #3


Da froggy
****

Group: Admin
Posts: 2445
Joined: 6-September 05
From: (French) West Coast
Member No.: 1711



Glad everything is back online without any loss or damage.

Good job and bravo abs-cheers.gif
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
Absinthesizer
post Jul 30 2006, 09:28 PM
Post #4


Absinthusiast
**

Group: Members
Posts: 316
Joined: 21-April 06
From: The trunk of your car
Member No.: 2082



Are we talking or are we drinking?

But (gulp), glad to see the forum back up! (gulp)


--------------------
Redundancy is alive, and well, and thriving.
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
green beh
post Jul 30 2006, 10:03 PM
Post #5


Novitiate
*

Group: Members
Posts: 29
Joined: 6-July 06
Member No.: 2200



WELL DONE on getting the forum back up!


i missed it all so much! :)



and now... abs-cheers.gif




--------------------
suus cuique mos, suus cuique carus...
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
radioflux
post Jul 30 2006, 10:18 PM
Post #6





Group: Members
Posts: 1
Joined: 6-November 05
Member No.: 1835



Hm. Aren't passwords supposed to be stored encrypted?
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
sixela
post Jul 30 2006, 10:23 PM
Post #7


Anal sage
*****

Group: Absinthe Mafia
Posts: 3273
Joined: 24-September 03
From: somewhere closer to Boveresse and Pontarlier than most of you
Member No.: 48



Yes. But if they are an English word or very close to it, there are successful brute force attacks through the "crack" utility and others.


--------------------
Varno Ettanu Parmantaurëo
--
For incredibly brain-melting hotness, always bet on Number Six -- Maxim, December 2003.
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
SoulShade
post Jul 30 2006, 10:46 PM
Post #8


Absinthusiast
**

Group: Members
Posts: 246
Joined: 20-November 03
From: Ohio, USA
Member No.: 270



Thanks for all the (I'm sure) hard work, and the heads up! Glad things are up and running.


--------------------
Candy is dandy, but liquor is quicker
-Willie Wonka
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
traineraz
post Jul 30 2006, 11:29 PM
Post #9


Absinthe Mafia
*****

Group: Absinthe Mafia
Posts: 5749
Joined: 24-September 03
From: Salem, Oregon
Member No.: 38



EEK!

Glad it's all fixed . . . Thanks for keeping us up to date, too!


--------------------
"Now that we've defined what marriage is, we need to take that further and say children deserve to be in that relationship." - Greg Quinlan of Ohio's Pro-Family Network, a conservative Christian group which apparently promotes pedophilia.

. . . and don't forget to read the FAQ and check out the Absinthe Buyer's Guide for brand reviews and distributor links!
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
Fredie
post Jul 30 2006, 11:35 PM
Post #10


Morose Chevalier
****

Group: Members
Posts: 1186
Joined: 15-October 04
From: Tampa...formally the OC
Member No.: 1095



QUOTE(Absinthesizer @ Jul 30 2006, 02:28 PM) *

Are we talking or are we drinking?

But (gulp), glad to see the forum back up! (gulp)



I'll louche to that!! abs-cheers.gif


--------------------
"...like Flaubert or the flowers of Baudelaire. Much maligned yet so refined, come dance with me sweet La Fee Verte. She’s my weakness – My rhapsody in green. A Pandora’s box of secrets, hold me please.... my sweet Opaline."
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
Helfrich
post Jul 30 2006, 11:57 PM
Post #11


Absinthusiast
**

Group: Absinthe Mafia
Posts: 308
Joined: 1-July 04
From: Germania Inferior / Ducatus Cliviae
Member No.: 834



Who the fuck is fluffyredux?


--------------------
Kunst = Kapital
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
Outerlimits
post Jul 31 2006, 01:16 AM
Post #12


Absinthusiast
**

Group: Members
Posts: 84
Joined: 26-October 05
Member No.: 1793



groupwave reversed.gif Glad to see FV is up and running again. I have constructed a voodoo doll dedicated to the hacker and have put all of my sewing neddles into it.


--------------------
After a while, my brain just dripped out of my ears, leaving me with my thoughts to mingle with the aftertaste, resulting in a pleasant wonderment.
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
el_yotcho
post Jul 31 2006, 01:49 AM
Post #13





Group: Members
Posts: 11
Joined: 14-October 03
Member No.: 150



I logged into the forums today about an hour ago for the first time in at least several months, but it said my last login was today at 5-ish. Is that a glitch, or was that the hax0r? Thanks
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
MarKoPoLo
post Jul 31 2006, 05:08 AM
Post #14


L'homme du plaisir
***

Group: Members
Posts: 660
Joined: 27-February 04
From: Winnipeg, Manitoba, Canada
Member No.: 528



QUOTE(radioflux @ Jul 30 2006, 03:18 PM) *

Hm. Aren't passwords supposed to be stored encrypted?


There are utilities out there that allow you to use these encrypted files. In other words, anything encrypted can be decrypted.


--------------------
Enjoy-boy, away!
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
hartsmar
post Jul 31 2006, 06:40 AM
Post #15


Clint Wormwood
*****

Group: Swedish Mafia
Posts: 7621
Joined: 25-November 03
From: Malmo, Sweden
Member No.: 278



QUOTE(radioflux @ Jul 30 2006, 03:18 PM) *

Hm. Aren't passwords supposed to be stored encrypted?


Not to get techy or so but they're stored in MD5 which is proven less powerful than people have thought and have been cracked. And as Sixela says, a very easy way is Brute Forcing.

If this is a script kiddie attack it's likely that he/she will do just that. Run a Brute Force program against the table of passwords and likely end up cracking some of them within hours.


--------------------
Efficient but deadly

Voodoo Magic™ - Boveresse 2011
User is offlineProfile CardPM
Go to the top of the page
+Quote Post

5 Pages V  1 2 3 > » 
Closed TopicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 



Lo-Fi Version Time is now: 18th January 2018 - 11:34 AM