Hacked?

Page 1 of 2 [ 32 posts ] Go to page 1, 2 Next

Previous topic | Next topic

Max_David
Tufted Titmouse

Joined: 19 Nov 2006
Gender: Male
Posts: 49
Location: Moorpark, CA

07 Jan 2007, 3:16 am

Is every page supposed to have "HaCked by: Red_Casper Forum Index" on it?

blue_bean
Veteran
Veteran

Joined: 13 Apr 2006
Gender: Female
Posts: 10,617
Location: Behind the wheel

07 Jan 2007, 3:22 am

I dunno. :?: :?:

But its not just WP that appears hacked, look at this:

http://www.google.com.au/search?q=Red_Casper&hl=en&lr=&start=0&sa=N

Tim_Tex
Veteran
Veteran

Joined: 2 Jul 2004
Age: 45
Gender: Male
Posts: 46,387
Location: Houston, Texas

07 Jan 2007, 3:32 am

I thought someone decided to celebrate April Fool's Day early.

Tim

_________________
Who’s better at math than a robot? They’re made of math!

mikh07
Veteran
Veteran

Joined: 12 Oct 2006
Age: 35
Gender: Male
Posts: 530

07 Jan 2007, 3:51 am

it seems that it doesn't do anything other than putting it's name on the forum..

goomba
Deinonychus

Joined: 17 Sep 2006
Gender: Female
Posts: 314

07 Jan 2007, 4:11 am

mikh07 wrote:

it seems that it doesn't do anything other than putting it's name on the forum..

For some reason, after this "hack", I cannot see new posts by clicking the "View posts since last visit" link.

Tim_Tex
Veteran
Veteran

Joined: 2 Jul 2004
Age: 45
Gender: Male
Posts: 46,387
Location: Houston, Texas

07 Jan 2007, 4:24 am

goomba wrote:

mikh07 wrote:

it seems that it doesn't do anything other than putting it's name on the forum..

For some reason, after this "hack", I cannot see new posts by clicking the "View posts since last visit" link.

I didn't know there was ever such a link.

Tim

_________________
Who’s better at math than a robot? They’re made of math!

starling
Sea Gull

Joined: 30 Jun 2006
Gender: Female
Posts: 228

07 Jan 2007, 5:16 am

Same here, I get only one result at the posts since last visit and I'm certain there should be many more.

Who is Red Casper?

TheMachine1
Veteran
Veteran

Joined: 11 Jun 2006
Gender: Male
Posts: 8,011
Location: 9099 will be my last post...what the hell 9011 will be.

07 Jan 2007, 5:31 am

Judging by the large number of arabic language sites with that Red_Casper on it seems to indicate this is a Middle Eastern hacker.

Alternative
Veteran
Veteran

Joined: 29 Jun 2006
Gender: Male
Posts: 6,341

07 Jan 2007, 6:17 am

Who would want to hack here?

Bateau
Blue Jay

Joined: 22 Aug 2005
Age: 40
Gender: Male
Posts: 83

07 Jan 2007, 7:53 am

I have called alex and informed him of the exploit. I highly doubt it was targeted. Based on what information I can gather on this "Red_Casper" it seems he searches for exploits in code validation, primarly known bugs based on patches that have been announced, and uses those for his attacks. It almost surely is a SQL exploit, based on his history, and on the fact that this site is FULL of SQL holes, and has been for MONTHS!! !! !

Alex, PLEASE lock down your SQL!! ! Also clean up your code!! !! !

Count yourself lucky this is a non-malicious attack (though I will note that this "Red_Casper" has droped expoits for MSN/passport on sites he owns (possibly on those (s)he exploits as well))

Alex, log dig, determine the actual exploit, and FIX YOUR CODE! Otherwise you'll be lucky if the next time there isn't data loss. Also, patch this site in at least a semi-timely manner, secure the server, etc.

Oh, one final thing, this "Red_Casper" has submitted exploits for IRC bots that run with a php frontend, etc. before, so that is a good spot to start looking.

Anubis
Veteran
Veteran

Joined: 6 Sep 2006
Age: 136
Gender: Male
Posts: 11,911
Location: Mount Herculaneum/England

07 Jan 2007, 8:46 am

Quote:

Could not get data from ignore table

DEBUG MODE

SQL Error : 1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'AND user_ignore = 7239' at line 4

Line : /usr/home/planet/public_html/includes/topic_review.php
File : SELECT user_ignore FROM nuke_bbignore WHERE user_id = AND user_ignore = 7239

That's what I get in the box showing people's replies when I write mine.

_________________
Lalalalai.... I'll cut you up!

Bateau
Blue Jay

Joined: 22 Aug 2005
Age: 40
Gender: Male
Posts: 83

07 Jan 2007, 8:51 am

that's one of the *MANY* coding errors on this site. as a user just tolerate them and "request" the administrator gets to work fixing them....

As the administrator... welll... he knows what I think....

Anubis
Veteran
Veteran

Joined: 6 Sep 2006
Age: 136
Gender: Male
Posts: 11,911
Location: Mount Herculaneum/England

07 Jan 2007, 8:53 am

Are you kidding? It was working before the site was hacked.

_________________
Lalalalai.... I'll cut you up!

shadexiii
Veteran
Veteran

Joined: 15 Dec 2006
Age: 40
Gender: Male
Posts: 3,545

07 Jan 2007, 9:05 am

Skript kiddie exploited code. Skript kiddie didn't cause damage. Skript kiddie is out on the web (as of recently, did a small amount of research) trying to make a name for himself.

Skript kiddie is too dumb to realize that being proud of hacking a site such as this is like taking a piss on a hospital or a soup kitchen because you wanted to take a piss on as many public buildings as possible...

Hopefully the moron will get "informed" of this by one of the hackers out there that has some sense of honor. At the least, hopefully this guy will get tired of getting off to minor site defacement.

logitechdog
Veteran
Veteran

Joined: 19 Nov 2006
Age: 41
Gender: Male
Posts: 973
Location: Uk - Thornaby

07 Jan 2007, 2:34 pm

Would not make fun of ( Hackers / Code Exploiters ) - shad... Might be under the belt - but it's not off limits...

It's the easiest way to get past a system / unless the dumb person used a Atypical Password...

/*
All it say's if it is a person using a "Trojan" type software "Sub7" as an example, the funny part about it is that "Sub7" is a backdoor access to the "Idiot Hacker", which anyone can gain access to the "idiot" computer, "As the idiot probably doesn't even have a Virus software or Firewall turned on"
*/

And sorry to "Alex", but mainly it's down to bad coding that let's that type of person "Gain" access..., Not using a "firewall" , "Not having a virus scanner"... Or an "Ad-Watch monitor."

/*
Maroc Anti ConneXion
Was Here
Owned By ! !!

b0rizQ and Crack_Man and AbOoM and Red_Casper and Broken-Proxy
Contacts Us :

Security ! ! ... Don't Panic! ... Nothing was deleted ... Only Editing Your Index*
*/

diseased
Veteran
Veteran

Joined: 23 Sep 2006
Gender: Male
Posts: 870
Location: Victoria, BC

07 Jan 2007, 3:49 pm

It may be down to inefficient code, but what it's really attributable to is some pathetic little asshat trying to show off how cool he is, and failing miserably. By way of proof: Does anyone here think this little sock-cooker is cool?
I'm not in a tolerant mood for this sort of crap today... went to the convenience store a few houses down to find that some other pathetic little assmaggot'd spraypainted some gang tag on the side of the otherwise pristine building.
"Mooo, kids need a place to express themselves, mooo."
Fine. Not on the side of a building. Buy some paper and a pen.
"Moooo, these poor kids are just misunderstood, moooo. Besides, moo, it's a legitimate alternate form of artistic expression."
Misunderstood my ass. It's called vandalism, and they're doing it to mark "their" territory and impress their little a**hole friends. Little pissants can and should find an acceptable, legal, non-defacing manner to express themselves.

Page 1 of 2 [ 32 posts ] Go to page 1, 2 Next

Jump to:

Hacked? Post Reply New Topic

Hacked?