News:

Bored?  Looking to kill some time?  Want to chat with other SMF users?  Join us in IRC chat or Discord

Main Menu

SMF mass-hack ?

Started by 01042, March 04, 2007, 05:29:26 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

01042

March 04, 2007, 05:29:26 PM
Hello,

upon logging onto my site today, i was greeted with a message "hacked by" some turkish retard.

I decided to investigate some more, and found this... This is the guy that hacked my site... he takes part in a sad little competition to see how many sites he can hack.

hxxp:www.zone-h.org/component/option,com_attacks/Itemid,43/filter_defacer,worldhackerz.org/ [nonactive]

As you can see.... hes hacked quite a bit of forums.... quite a few seem to be smf.

I thought i would let you guys know just incase its a bug in smf or something. I also use the joomla hacks smf bridge.... but i dont think its that as  the other hacked sites arent using joomla. I suspect it may be SMF, as my joomla is fine... nothing seems to have been touched in that.

My site -    hxxp:www.thetechworld.co.uk/forums [nonactive]

winrules

#1
March 04, 2007, 05:39:11 PM
It looks like they edited the board name of the first board to some javascript that will redirect to their site. You should disable javascript and fix the board title. I would change your password. Also please file a security report here: http://www.simplemachines.org/about/security.php


winrules
SMF Developer
               
My Mods
Please do not PM me for support.

Daniel15

#2
March 05, 2007, 03:03:52 AM
01042, what version of SMF were you running? It appears that a lot of the hacked forums were running old versions of SMF.
Daniel15, former Customisation team member, resigned due to lack of time. I still love everyone here :D.
Go to smfshop.com for SMFshop support, do NOT email or PM me!

ubermensch

#3
March 05, 2007, 09:33:42 AM
Doubt it's as bad as InvisionFree. You can hijack admin sessions if you know what you're doing D:
Print
Go Up Pages1
User actions
Advertisement: