PDA

View Full Version : My PHP BB hacked -- now what


JonInMiddleGA
12-06-2005, 10:12 PM
I get an email from a user as my personal bulletin board (rarely used but still active) -- I head over & find the stuff below basically superimposed over my index page (along with a cute little penguin graphic).

Hacked by keeper_mert for Turkey>>i am turkish hacker hiahahaha

A fatal exception 0E has occurred at 404:0AE0C6F0 in VML UMM(03) + 1AE0C600. System.worm virus was found.

Be no worry, I do not cause any harm to your system nor changing your content, my action will now be terminated.

* Press the back button to return to the previous page.
* Contact me at sysworm(at)gmail(dot)com to report this error and to get
further info.
* Greetz goes to Rawkmetal,Linux, 06 PJT lecturers who give shits days to
days (i hate you sensei), my friends : gokselbasturk , alonewolf and All Türk Hackers Fuck USA and Bush

Press Ctrl + Alt + Del to continue

powered by gokselbasturk

So ... how do I unfuck this? (Other than contacting the gmail address, which I'm thinking isn't in my best interest)

vtbub
12-06-2005, 10:14 PM
report it to your webhost for starters.

you can always setup a hotmail account to send something to their gmail.

Chubby
12-06-2005, 10:16 PM
So ... how do I unfuck this? (Other than contacting the gmail address, which I'm thinking isn't in my best interest)
Gee, ya think?

Contact one of the many MP commishes that have encountered this for help. I know you need to patch your BB software, beyond that I have no idea.

JonInMiddleGA
12-06-2005, 10:17 PM
Gee, ya think?

Contact one of the many MP commishes that have encountered this for help. I know you need to patch your BB software, beyond that I have no idea.

Thanks.

JonInMiddleGA
12-06-2005, 10:18 PM
report it to your webhost for starters.

Okay, now THAT is just so obvious ... so obvious that it honestly hadn't even crossed my mind for a second. Damn I feel dumber than a bag full of hammers right now.

vtbub
12-06-2005, 10:18 PM
Patching probably is needed, as chubby said. IIRC, phpbb actually has a good support board to help.

Joe
12-06-2005, 10:19 PM
definitely patch. my website almost got shut down because I was using an outdated version of phpbb, luckily my host contacted me before anything got hacked

Farrah Whitworth-Rahn
12-06-2005, 10:20 PM
Okay, now THAT is just so obvious ... so obvious that it honestly hadn't even crossed my mind for a second. Damn I feel dumber than a bag full of hammers right now.
If you can dodge a wrench, you can dodge a ball. But what can you do with a sack full of hammers? :p

Sorry I have nothing constructive to add. Hope your evening goes better. :)

Chubby
12-06-2005, 10:21 PM
Okay, now THAT is just so obvious ... so obvious that it honestly hadn't even crossed my mind for a second. Damn I feel dumber than a bag full of hammers right now.
and don't email that fucktard unless you want millions of F USA spam

stevew
12-06-2005, 10:21 PM
Reminds me of that Groundbreaking FOBL website design a few months ago.

JonInMiddleGA
12-06-2005, 10:24 PM
and don't email that fucktard unless you want millions of F USA spam

I was thinking more along the lines of a series of thermonuclear devices aimed at Turkey ... now if I could only remember where I put those launch codes.

ThunderingHERD
12-06-2005, 10:25 PM
A google search for that email address reveals a few other pages this guy has "hacked" leaving his email address. I'd contact google about his gmail account just to fuck with him--maybe they'll suspend it.

JonInMiddleGA
12-06-2005, 10:40 PM
A google search for that email address reveals a few other pages this guy has "hacked" leaving his email address. I'd contact google about his gmail account just to fuck with him--maybe they'll suspend it.

Done (although it's a longshot, maybe the guy really IS dumb enough to leave a working email address).

Cuckoo
12-06-2005, 10:52 PM
Yes, I frequently look over the phpbb support forum, and I have seen several people report hackings just like this. Go post there, and they can tell you what to do. There are toolkits available to clean up your install and reinstate your passwords. Then, you'll probably need a back-up of your database.

In the future, definitely keep up to date with the latest software. You can sign up to receive updates at phpbb.com when they put out a new patch. Updating can be a pain sometimes, especially if you're board is modded at all, but it's well worth it because of security things like this that someone inevitably finds.

JonInMiddleGA
12-06-2005, 11:10 PM
Yes, I frequently look over the phpbb support forum, and I have seen several people report hackings just like this. Go post there, and they can tell you what to do. There are toolkits available to clean up your install and reinstate your passwords. Then, you'll probably need a back-up of your database.

In the future, definitely keep up to date with the latest software. You can sign up to receive updates at phpbb.com when they put out a new patch. Updating can be a pain sometimes, especially if you're board is modded at all, but it's well worth it because of security things like this that someone inevitably finds.

I looked back in the archive to refresh my memory of when I set-up the bulleting board & it seemed to reinforce my foggy recollection about how that worked. Basically, I clicked a handful of "do this" & "do that" buttons in the control panel of my webhost account & voila ... phpbb is installed. As far as I can remember (and from what I said in the thread here at the time), I didn't do much of anything with the actual phpbb itself, I just worked through a 3rd-party interface to get it running.

Point being, with that being the case, I'm not even sure I could have upgraded/patched/changed anything, since all I deal with are control panels, not actual scripts (or whatever the heck actually makes it do that voodoo that it do).

MalcPow
12-06-2005, 11:21 PM
Most of the time you can upgrade through the same cpanel interface you used to install in the first place. It's worthwhile to check on this every once in a while. Hopefully nothing too important was lost, this crap can be the most frustrating thing in the world.

Senator
12-06-2005, 11:26 PM
JonInMiddleGA - hurt this clown.

Unless he uses an email address of some innocent sap who stole his girlfriend. But, that is probably not the case as most hackers would have to cut off their right hands to lose the only girlfriend they most likely would ever have. Unless they are southpaw, but you get my point.

vtbub
12-06-2005, 11:32 PM
JonInMiddleGA - hurt this clown.

Unless he uses an email address of some innocent sap who stole his girlfriend. But, that is probably not the case as most hackers would have to cut off their right hands to lose the only girlfriend they most likely would ever have. Unless they are southpaw, but you get my point.
You, sir, are in rare form tonight. Bravo!

st.cronin
12-06-2005, 11:37 PM
Okay, now THAT is just so obvious ... so obvious that it honestly hadn't even crossed my mind for a second. Damn I feel dumber than a bag full of hammers right now.

I love that feeling.

SackAttack
12-07-2005, 01:03 AM
Before we switched bulletin boards on Gamenikki, we used a PHP BB setup. We had a dude come in and "hack" our board, but all he really did was piggyback on my password to gain admin CP rights, and then change all of our forums from "visible" to "invisible" and create his own forum whereupon he shat.

I just went in there - I still had access - deleted his accounts and forum and reinstated the old ones. It still had the security hole, but at least nothing was lost. We've since switched bulletin boards, and we don't currently have public boards.

Anthony
12-07-2005, 09:17 AM
i don't understand why they have to write this incomprehensible shit when they hack. at least write something sensible or funny, like "i just left a Cleveland steamer on your sister's chest", or "your grandmother has flappy pussy lips - i own this site now". if someone hacked my site and wrote that i'd laugh.

GreenMonster
12-07-2005, 09:36 AM
i don't understand why they have to write this incomprehensible shit when they hack. at least write something sensible or funny, like "i just left a Cleveland steamer on your sister's chest", or "your grandmother has flappy pussy lips - i own this site now". if someone hacked my site and wrote that i'd laugh.

Hackers probably lack the great people skills and ways to describe ugly situations that you have..