Hacked

When entering www.wfcforums.com into the address bar, after a short delay I get taken to www.youtubeizlet.com. Is this happening to anyone else?

 

It's not happening to me but has been reported to me by other users on MSN. Would all those affected post here please, including any error messages etc...

 

it is happening occasionally to me.

 

Ok, just happened to me too.

 

happens to me like every other time

 

Yes happening to me also.

 

and me

 

it's just happened to me loads, but one is able to get here if they bypass www.wfcforums.com

 

Yep, hacked. At last, we're popular enough

Still working on the issue so might redirect you all to porn again soon, but not for too long :dismay:

 

all fine over here

 

Enjoying youtubeizlet?

 

Reports that the site you were redirected to was better than this one are probably true!

I'll give you all the details later once everythings bolted down again.

 

I just got some cruddy youtube style webskte.

No porn. If it was porn, I would have been happy for the boards to stay down.:]]

 

Came back online about an hour ago and couldn't get on until now, intially it gave me a white screen with a message about file error and the website address and it said that *admin's v-bulletin username* had been notified.

This lasted for a couple of seconds before attempting to send me to www.youtubeizlet.com which never actually worked.

 

Details are slowly emerging so I can give the full story later, but the forum will have to close soon while I install some newer software that's not as easy to exploit. There's a big upgrade coming soon but tonights small one will close any security holes that I'm unaware of.

Shame there's no footy on for you while I do it

 

What time shall you be doing this and how long will it take ?

 

Site upgraded and re-opened. Still got lots to do and expect a few tweaks required.

 

....and we're back

 

OK, it's been a bit mad the past few hours but here's what I know!

I was happily cutting the grass and about to go have a manly bonfire in the back garden when I noticed a text from UEA_Hornet that said that the forums were being redirected to a porn site . WTF? Only the link to the front page was doing this, so you could have easily got in using a direct link into a thread you'd been viewing recently.

First thing I did was contact the hosts via live chat and the guy there fixed the problem pretty quickly, (seems they know where to look, must do it regularly)??. It turns out that the file that's loaded when you access this site was modified to include an extra line that redirected you off to the porn site or whatever it was. All the hosts did was to remove the redirection from the file. Sorted.

Now the hard part, working out how the hacker did it in the first place. Most likely way is to exploit a current security hole in the software itself, so I've just upgraded to the latest of this particular version, (big upgrade to the new stuff soon). Next is the possibility that I had some directories on the server that had access to anyone, so I've checked every single folder, subfolder and file for correct permissions. Definately tightened up some stuff.

Now if it happens again I'll know that it could be because of a vulnerability in one of our add ons, (EG the 'Orns system or the Arcade), and I'll have to close them 1 by 1 to find out what's the problem one. Otherwise it's the hosts who have the problem by letting someone access our server area that hosts the forums. If that's the case then I'll find out later as I've posted on a few forums to see if it's happened to others. If that was the case then I'd have expected more damage to occur.

Finally the mods/admins logns could have been compromised. Again I'd be surprised because there would have been havoc wreaked. Still won't hurt us to change passwords for everything now.

To conclude, the fact that we were hacked proved to me 2 things. Firstly we're on someones radar as being popular enough to be worth an attack, so not a bad thing really Secondly, it doesn't hurt to review your security now and again. Preferably not when you're about to have a big and beautiful bonfire, but overall I don't think it was a bad thing what happened tonight.

 

More to the point, did you finish mowing the lawn and did it have stripes ??

 

Bonfire? Will someone think of the environment and Amy Winehouse's lungs? Real men compost.

 

Lawn mowed and no, it doesn't look like Man City's ground. With kids I consider myself lucky to have grass!

 

I'd much prefer it if he'd done a zig-zag pattern.

 

That's why he's doing it

 

I'd like to see you compost 100 branches that I cut down from trees over the weekend. Filled up the brown bin, took loads down the tip in Ricky for recycling too. Men need to bonfire sometimes, it gives us something to poke sticks at.

 

I tried gardening once ended up sticking a fork threw a wasps next, and got stun 21 times. after that i knew it was not for me.

 

He was left with just a cricket strip.

 

I'll bring my bat.

 

what about the cone? i mean stumps?

also does anyone own a Bowden cut out?

 

Due to the sudden turn of events last night we've lost a few icons and you might notice a few other changes. This should all be back to normal by the end of the day.

 

i think the arcade is broken, i was playing tetris and instead of saving the high score i just achieved. it just re-directed me to the home page.

 

Ah, this was an issue when we first installed the new frontpage. I'll get it fixed this afternoon. Thanks for the info.

 

Arcade score submission should now be fixed.

 

good work my man

 

feel free to take you time, as long as it isnt gay porn.