Sorry your browser is not supported!

You are using an outdated browser that does not support modern web technologies, in order to use this site please update to a new browser.

Browsers supported include Chrome, FireFox, Safari, Opera, Internet Explorer 10+ or Microsoft Edge.

Geek Culture / Website hacked...

Author
Message
Drew Cameron
20
Years of Service
User Offline
Joined: 30th Jan 2004
Location: Scotland
Posted: 14th Oct 2007 00:32
Link
I'm going to leave it hacked for a while so people can see it and check out the message from the hackers.

http://www.drewsgames.com

NOW, the point of this thread. Is there any way I can get these schmucks in trouble? Like, you know, hacker police? Who should I go to.

Also, what does / server chat.crew.org or whatever mean? Is that a chat room? If so, how do I get onto to it to give them abuse.

I'm changing my passwords, etc... now.

Back to top
Profile PM Email Website
Dr Manette
18
Years of Service
User Offline
Joined: 17th Jan 2006
Location: BioFox Games hq
Posted: 14th Oct 2007 00:35
Link
Ouch. Do you run your own server for your website or is it hosted somewhere. Just wondering.

I'm not an expert with web stuff, but I dunno if passwords will keep these guys out.


BioFox Games...http://www.biofoxgames.com
BioFox Forums...http://biofox.aceboard.com
Back to top
Profile PM Email Website
GatorHex
19
Years of Service
User Offline
Joined: 5th Apr 2005
Location: Gunchester, UK
Posted: 14th Oct 2007 00:43 Edited at: 14th Oct 2007 00:44
Link
1st job is figure out how you were hacked and fix it.

Law enforcement won't care you've been hacked until it's cost u £10k + so your on your own on that front, probably best you can do is moan at there image host to shut down their account as it's being used for illegal stuff which is proably against their AUP.

DinoHunter (still no nVidia compo voucher!), CPU/GPU Benchmark, DarkFish Encryption DLL, War MMOG (WIP), 3D Model Viewer
Back to top
Profile PM Website
bitJericho
22
Years of Service
User Offline
Joined: 9th Oct 2002
Location: United States
Posted: 14th Oct 2007 00:46
Link
Quote: "/server irc.crewchat.org | #Collaps3"


This is an irc chatroom. It's a very bad idea to go there and give them abuse, as logging into their server would give them your IP information, that is, if they don't already have it


The greatest multiplayer text adventure ever...
Back to top
Profile PM Email Website
Nicholas Thompson
20
Years of Service
User Offline
Joined: 6th Sep 2004
Location: Bognor Regis, UK
Posted: 14th Oct 2007 00:49
Link
What were you running on your site? If it was a custom built site written in something like PHP its likely you left an input field somewhere inserting data into the database in an raw form meaning people could inject code...

If it was a CMS like phpBB, Drupal, Joomla, phpNuke, etc... Check your logs and report any findings. PhpBB used to be fairly infamous for getting hacked...

Basically there is nothing you can do about it - no agency is going to be interested in tracking down a few kids who took out a personal website... They MIGHT consider looking into someone taking out a commercial site - but you'd have to fight for it... Plus tracking is hard as they likely used things like proxies to cover their tracks.

In any case - that reallllly sucks, getting your site hacked... Maybe they brute force guessed your password to FTP in? If its a shared server you might want to report it to the provider as security of the server as a whole might be compromised...

[center]
Back to top
Profile PM Email Website
5Louiz
18
Years of Service
User Offline
Joined: 15th Nov 2006
Location: Brasil
Posted: 14th Oct 2007 00:50
Link
Why do people do that?

Actually, "KKK" sounds like laugh in our language. We do not support Ku Klux Klan. I would kill KKK if it was a man. Cheers.
Back to top
Profile PM Email
Nicholas Thompson
20
Years of Service
User Offline
Joined: 6th Sep 2004
Location: Bognor Regis, UK
Posted: 14th Oct 2007 00:52
Link
bored people who get a kick out of ruining other people's work... It also tends to be people who enjoy a challenge... Usually quite intelligent people too..

[center]
Back to top
Profile PM Email Website
Deathead
18
Years of Service
User Offline
Joined: 14th Oct 2006
Location:
Posted: 14th Oct 2007 01:49 Edited at: 14th Oct 2007 01:50
Link
Looks like this Brazillian has hacked more websites...
http://www.google.co.uk/search?sourceid=navclient&hl=en-GB&ie=UTF-8&rlz=1T4PBEA_en-GBGB228GB229&q=%5bC0llaps3+CREW%5d
This is actually illegal. Unless you wasn't paying for the website its fine but if was buying for bandwidth then lets just say [Collaps3 crew] is going to say bye bye to their hacks and say hello to hefty fine. If only we can find out his/hers email we could let rip.

-Go onto the forums its nice! Join now!
Back to top
Profile PM Email
Deathead
18
Years of Service
User Offline
Joined: 14th Oct 2006
Location:
Posted: 14th Oct 2007 02:00
Link
Sorry for double post but you should download a free trial of this and get them... For good.
http://www.jufsoft.com/whereisip/

-Go onto the forums its nice! Join now!
Back to top
Profile PM Email
tha_rami
18
Years of Service
User Offline
Joined: 25th Mar 2006
Location: Netherlands
Posted: 14th Oct 2007 02:04 Edited at: 14th Oct 2007 02:06
Link
The challenge, I guess. They wouldn't do it if they didn't get a kick from it, because they don't get money for it neither. The address is IRC, a chat-method used by hackers and crackers quite often. I wouldn't go there, will indeed give them your IP.

This sucks, Drew, but like said, if there's no damage and it's not a consequetive attack, no official instance will bother with it.


A mod has been erased by your signature because it was larger than 600x120
Back to top
Profile PM Email Website
Jess T
Retired Moderator
21
Years of Service
User Offline
Joined: 20th Sep 2003
Location: Over There... Kablam!
Posted: 14th Oct 2007 04:53
Link
Pfft, their code doesn't even validate!

Seriously, though... If there's no damage, then they did it for two reasons;
1. Because they can - They're smart, and know exactly what they're doing (probably doing it professionally).
2. Because now that it's happened, they know that you'll (hopefully) fix the problem, teaching you about security and that it could have been alot worse if someone else got to you first.

It's a big kick up the butt, but it's one that you gotta look on as a positive learning experience (again, I'm only saying this if they didn't actually damage anything, or steal anything).

On the other hand, if they did steal or damage, then they're bastards, and unfortunately, they wont stop, or be put off by you contacting anyone.

Nintendo DS & Dominos :: DS Dominos
http://jt0.org
Back to top
Profile PM Email Website
Benjamin
21
Years of Service
User Offline
Joined: 24th Nov 2002
Location: France
Posted: 14th Oct 2007 05:13 Edited at: 14th Oct 2007 05:13
Link
I really hate people that do this just for fun.

Quote: "On the other hand, if they did steal or damage, then they're bastards, and unfortunately, they wont stop, or be put off by you contacting anyone."

Yeah, however maybe you can find the person and beat the living daylights out of him. That might work. Of course, first you have to somehow find out who it is, and then travel to wherever they live. Hmm.

Tempest (DBP/DBCe)
Multisync V1 (DBP/DBCe)
Back to top
Profile PM Email
KYP
19
Years of Service
User Offline
Joined: 5th May 2005
Location: 01110000
Posted: 14th Oct 2007 05:16
Link
It was probably a certain person in my homeroom...

Quote: "and then I accidentally hacked Game Informer! It was funny."



And Mr. Bear!
http://forum.thegamecreators.com/?m=forum_view&t=113563&b=8
Back to top
Profile PM Email
dab
20
Years of Service
User Offline
Joined: 22nd Sep 2004
Location: Your Temp Folder!
Posted: 14th Oct 2007 08:57
Link
Wow, here is another website they hacked..
http://medieval52.free.fr/neox.htm

That's cool. I think the smear is a cool affect.

But that sucks. As long as nothing is damaged, or lost or whatever, I'd say I'd change all passwords, and add to the security.
Back to top
Profile PM Email Website
Mr Makealotofsmoke
17
Years of Service
User Offline
Joined: 10th Dec 2006
Location: BillTown (Well Aust)
Posted: 14th Oct 2007 09:44
Link
my site got ahacked ages ago, i cbb to do anything about it so i left it

http://www.fpscgames.biz.tm


http://www.myspace.com/pictureperfecttheband
Back to top
Profile PM Email
Shadow heart
17
Years of Service
User Offline
Joined: 2nd Dec 2006
Location: US
Posted: 14th Oct 2007 11:48
Link
geez i hate hackers sorry dude.
ezpecilly fat Azz kidz who dont hav a life so jus hack a page.

hope verything on ur page is runnin smooth now =]

Your signature has not been erased by a mod
Back to top
Profile PM Email Website
NeX the Fairly Fast Ferret
19
Years of Service
User Offline
Joined: 10th Apr 2005
Location: The Fifth Plane of Oblivion
Posted: 14th Oct 2007 12:18
Link
They hit a few Datel pages too.


Since the other one was scaring you guys so much...
Back to top
Profile PM Website
tha_rami
18
Years of Service
User Offline
Joined: 25th Mar 2006
Location: Netherlands
Posted: 14th Oct 2007 15:00
Link
Keep the line between hackers and crackers, though. I remember that even back when I was young the scene was very, very irritated to be associated with 'crackers'. I like hackers, actually. I hate crackers.

Could just call them 'script kiddies'.


A mod has been erased by your signature because it was larger than 600x120
Back to top
Profile PM Email Website
Jess T
Retired Moderator
21
Years of Service
User Offline
Joined: 20th Sep 2003
Location: Over There... Kablam!
Posted: 14th Oct 2007 15:28
Link
Quote: "Could just call them 'script kiddies'."


The people who break into phpBB are script Kiddies - These guys who take down full sites are more than likely pro's.

I agree with your take on hacker vs cracker - Unfortunatly, due to todays ignorant media and the way they spout crap as if its fact, the two terms have both come to mean the same as cracker.
Oh well.

Nintendo DS & Dominos :: DS Dominos
http://jt0.org
Back to top
Profile PM Email Website
tha_rami
18
Years of Service
User Offline
Joined: 25th Mar 2006
Location: Netherlands
Posted: 14th Oct 2007 15:30
Link
Quote: "The people who break into phpBB are script Kiddies - These guys who take down full sites are more than likely pro's.

I agree with your take on hacker vs cracker - Unfortunatly, due to todays ignorant media and the way they spout crap as if its fact, the two terms have both come to mean the same as cracker.
Oh well."


I know that, that's why should just call em that . Nothing annoys them more than having them anonymously called script kiddies.


A mod has been erased by your signature because it was larger than 600x120
Back to top
Profile PM Email Website
Jess T
Retired Moderator
21
Years of Service
User Offline
Joined: 20th Sep 2003
Location: Over There... Kablam!
Posted: 14th Oct 2007 16:12
Link
Haha, but they're probably not the kind of people you want to annoy!

Nintendo DS & Dominos :: DS Dominos
http://jt0.org
Back to top
Profile PM Email Website
tha_rami
18
Years of Service
User Offline
Joined: 25th Mar 2006
Location: Netherlands
Posted: 14th Oct 2007 16:15
Link
Mmm, got a point there.


A mod has been erased by your signature because it was larger than 600x120
Back to top
Profile PM Email Website
5Louiz
18
Years of Service
User Offline
Joined: 15th Nov 2006
Location: Brasil
Posted: 14th Oct 2007 16:22
Link
http://arlequine.free.fr/

Quote: ""My Brasil does not deserve this. THIS IS A SHAME. Victory of the intense corruption!

Here it is, one more victory of the brazilian corruption rats!!""


He discusses politics. He is probably a PC guy.


Quote: "Made in Brazil"


And the t*** says that with a full chest.

Vergonha, à vitória.


Drew, may I post Deathead's link in a Brazilian security forum?

Actually, "KKK" sounds like laugh in our language. We do not support Ku Klux Klan. I would kill KKK if it was a man. Cheers.
Back to top
Profile PM Email
Eevil Weevil
17
Years of Service
User Offline
Joined: 1st Aug 2007
Location: Wherever you are, I wil follow
Posted: 14th Oct 2007 20:51 Edited at: 14th Oct 2007 21:52
Link
Is there any way of finding out how this hacker got into your system? Are there any server logs? But if these guys are pro's, they'll've viewed the page from Google, then hacked the page, rather than being dumb enough to actually communicate with the server. So, we need to find out if anyone has viewed your site from Google. Wait a min...

[edit]
KKK , I've found the IP address of the page that they would've viewed the site's content from. Here:

That should do it. I'll re-edit when I've found out something else.
As for now, prepare the stakes !
[/edit]


[edit2]
Well, you know the picture that was on the hacked page? URL:
oh and IP of http://www.imagehosting.com is:
Oh yeah!
[/edit2]

[edit3]
Okay, found out http://www.Drewsgames.com's IP address. Well, I didn't.
I get 194.168.4.100 IP and search WHOIS, and get [href]null[/href] (link for cached page). Hmmmm. No DNS.

Also 195.12.48.160 IP and search the WHOIS and get
a: A link This looks like it could be a hosting service, and that might be what has been hacked. But theres no sign of any IP that leads me to Drewsgames.com
[/edit3]

Your signature has been erased by a forum-hacke - I mean, a mod.

Back to top
Profile PM Email
Sid Sinister
19
Years of Service
User Offline
Joined: 10th Jul 2005
Location:
Posted: 14th Oct 2007 21:29
Link
Quote: "safe-mode: 0FF (not secure) = **deface**"


Lol, talk about owned

It's like Jess T said though, they are just doing their civic service by raising awareness on website security. I wouldn't be incredibly mad about it, but incredibly thankful he didn't do worse.

Still would make me want to break face but shhh
Back to top
Profile PM Email
Eevil Weevil
17
Years of Service
User Offline
Joined: 1st Aug 2007
Location: Wherever you are, I wil follow
Posted: 14th Oct 2007 22:21
Link
The hosting server Drew is using is called NS1.XRSHOSTING.COM, and NS2.XRSHOSTING.COM , (DNS) and IP: 195.12.48.160. I've now got a serious hacker-headache (numbers, NUMBERS!), but... I think I can risk a few more IP addresses... (THERE TOO MUCH! THESE CAP LOCKS DON'T HELP EITHER!)
Seriously, I do now actually have a headache.
Ok, where is this going? If you ask me, my personal opinion is to follow that pic that was on imagehosting.com . But how? We can't just email them, say 'Hi! Can we have your server logs?', we can't steal them, coz that's illegal , and we can't walk up to Harry Potter, punch him on the nose, steal his wand and say 'Tellius Meeio Wheresa TheguywhoDio Hackio My Websitio', cause, well, that's impossible (Or is it ). So how, how, how.
Just asking.

Your signature has been erased by a forum-hacke - I mean, a mod.

Back to top
Profile PM Email
Nicholas Thompson
20
Years of Service
User Offline
Joined: 6th Sep 2004
Location: Bognor Regis, UK
Posted: 15th Oct 2007 11:22
Link
Eevil Weevil - what the hell are you talking about?! lol!

Btw, NS1&2 are actually domain name server's - not a web hosting service...

As has been said before - you can track them all you want but nobody will do anything because (and no offence is intended by this) the website that got hacked is worth nothing (commercially).

If M$'s site got hacked then it'd be different... But in this case its a futile attempt to find them.

In any case - it's hosted by "uh-hosting.co.uk", the webserver claims to be Apache 1.3 and PHP is running in secure mode... So its actually quite a secure server by the looks of it. (1.3 is old, but it's also had plenty of time to have its security holes plugged).

My guess is there might be a security issue with the guestbook CGI script or maybe the hacker simply brute force hacked the FTP password! I know my VPS gets attempted hackers pretty much everyday... I get the hackers IP emailed to me as part of the next-day's logwatch. The best I've had so far is someone tried to brute-force hack the username and password about 5,000 times in one day. Now THATS persistent. The ironic thing is that regardless of what password he/she tried - they never even got around to using an accessible username

[center]
Back to top
Profile PM Email Website
5Louiz
18
Years of Service
User Offline
Joined: 15th Nov 2006
Location: Brasil
Posted: 15th Oct 2007 15:23
Link
Quote: "KKK "




Actually, "KKK" sounds like laugh in our language. We do not support Ku Klux Klan. I would kill KKK if it was a man. Cheers.
Back to top
Profile PM Email
Deathead
18
Years of Service
User Offline
Joined: 14th Oct 2006
Location:
Posted: 15th Oct 2007 21:30
Link
Quote: " M$"

Why did you have M$ not MS? They aren't as bad as $ony.lol Is MS Microsoft?

-Go onto the forums its nice! Join now!
Back to top
Profile PM Email
Samoz83
21
Years of Service
User Offline
Joined: 3rd May 2003
Location: Stealing Ians tea from his moon base
Posted: 15th Oct 2007 22:04
Link
they are as bad as $ony and yer he did mean Microsoft

www.firelightstudio.co.uk
Back to top
Profile PM
Sopo the tocho
17
Years of Service
User Offline
Joined: 12th Jun 2007
Location:
Posted: 15th Oct 2007 22:39
Link
Sony is worst so far...


Intel Pentium core 2 duo T6600 2,6 mhz 4mb, 4 gb ram 600 mhz ddr2
Back to top
Profile PM
Eevil Weevil
17
Years of Service
User Offline
Joined: 1st Aug 2007
Location: Wherever you are, I wil follow
Posted: 15th Oct 2007 22:52
Link
*Gasp* Wat rong wiv da Soeneez?

Quote: " Eevil Weevil - what the hell are you talking about?!"
I really don't know... I had too much coffee. The Ip's didn't help either... Coffee and E-numbers

What I'm trying to do is track the IP of the hacker, then reference it to the WHOIS reistry data (here we go again) and then find the Name&Address of the ISP-registered IP, then reference it into Google Earth. Then I watch it zoom in to the GPS (oooh) location like they do in those cool spy movies

So KKK, just wanted to validate a few points

Your signature has been erased by a forum hacke - I mean, a mod

Back to top
Profile PM Email
Satchmo
19
Years of Service
User Offline
Joined: 29th May 2005
Location:
Posted: 15th Oct 2007 22:58
Link
What happened? I don't see anything wrong.

Your about to get pwned.
Back to top
Profile PM
Jeff032
17
Years of Service
User Offline
Joined: 13th Aug 2007
Location:
Posted: 15th Oct 2007 23:08 Edited at: 15th Oct 2007 23:22
Link
I think he fixed it, but I'm not sure. I didn't see anything.

Quote: "then reference it into Google Earth"

I guess it does have a use other messing around and

[offtopic]
http://www.youtube.com/watch?v=wCh9bmg0zGg
reminded me of that somehow... ^
[/offtopic]

Space Game WIP
Back to top
Profile PM
Nicholas Thompson
20
Years of Service
User Offline
Joined: 6th Sep 2004
Location: Bognor Regis, UK
Posted: 16th Oct 2007 00:22
Link
Eevil Weevil's post reminded me of the film hackers (http://www.youtube.com/watch?v=A_ihcJbwzV0)

[center]
Back to top
Profile PM Email Website
Hobgoblin Lord
19
Years of Service
User Offline
Joined: 29th Oct 2005
Location: Fall River, MA USA
Posted: 16th Oct 2007 10:21
Link
Funny thing is the movies website was hacked the first day it went up . Man all these years later and we still dont have that technicolor 3d matrixy type surfing they had in that movie, but I guess thats because they had the new 586

http://forum.thegamecreators.com/?m=forum_view&t=73324&b=8
My RPG WIP, check it out
Back to top
Profile PM Email Website
Eevil Weevil
17
Years of Service
User Offline
Joined: 1st Aug 2007
Location: Wherever you are, I wil follow
Posted: 28th Oct 2007 11:45 Edited at: 28th Oct 2007 11:47
Link
Where is this going? I don't think anyone is actually bothering. For once I think there's a thread which actually means something, but it seems everyone's lost interest in it. So someone go kill Imagehosting.com!!!

Impossible? Anything is impossible. Of course it's impossible, you just have to believe in it.

Back to top
Profile PM Email
Deathead
18
Years of Service
User Offline
Joined: 14th Oct 2006
Location:
Posted: 28th Oct 2007 13:36
Link
Haha! Hack turbosquid and make everything free and then we all download things from it with out payingXD

Eevil Weevil:MAAAJJJJORR BUMP BTW

[center]
Back to top
Profile PM Email
Back to top

Login to post a reply

Server time is: 2024-11-19 11:34:32
Your offset time is: 2024-11-19 11:34:32