• Hey Guest!
    British Car Forum has been supporting enthusiasts for over 25 years by providing a great place to share our love for British cars. You can support our efforts by upgrading your membership for less than the dues of most car clubs. There are some perks with a member upgrade!
    **Upgrade Now**
    (PS: Upgraded members don't see this banner, nor will you see the Google ads that appear on the site.)
Tips
Tips

Whats going on over at 6-pack? Hacked?

Share this page

WidespreadPanic

WidespreadPanic

Jedi Hopeful
Offline
the following quote is on the front page over there

[ QUOTE ]
HACKED BY L33CH! h4cky0u security team


HACKED BY L33CH! h4cky0u security team




You are advised to upgrade your website to prevent further attacks


No data has been tampered with


L33CH

h4cky0u security team

www.h4cky0u.org


[/ QUOTE ]
 
It's usually someone trying to sell something. Just more spamm
 
It' amazes me that some dumb SOB thinks it's cool to show that he can tamper with a site. Wouldn't it be easier just to post like everyone else. What disturbed twisted mind finds fun in ruining others hard work just to show they can, WHAT DOES THAT PROVE !!.

We wouldn't need to upgrade our software if it were'nt for dweebs like them.
 
It seems OK tonight. Apparently not too much damage.
 
I was hacked here once. There was a security hole in one of the scripts files the forum uses which, if accessed directly in a browser would allow someone to upload an exploit that would give them full access to the server (not my new server, this was back when I was using a VPS server). Anyway, I had to pretty my restore the entire site. It took 36 hours straight to get rid of all the mal-ware they had uploaded. I have fixed the security hole in that script file and now, if someone accesses that particular file they get a picture of Dirty Harry telling them that all of the personal info has been recorded from their computer and that authorities will be notified. The script then emails be their info. Since I installed the fix and the Dirty HArry thing, I proibably get 5 or 6 attempts a week. (I also now have a very good firewall installed on my server that can detect brute force attempts).

Basil
 
I know a very little about that of which you speak. I hate to see anyone hacked.

I'm just happy that you're on the new server. With the new speed it's been really great.
 
/ubbthreads/images/graemlins/iagree.gif
 
I think the hacker may have done more than was thought. I've been getting emails from 6-Pack about changes to my password on their site. My guess is the profile data has been stolen.
 
Better watch out what you send and to whom it is going. I just auto logged in at 6-Pack with no problems.
 
6-PACK was hacked on the home page only..... No user information was accessed or compromised and our site was not damaged in any way.

As for 71tr and his password being reset, he is getting an automated response from the 6-PACK site because another 6-PACK user forgot their username/nickname. They went to the "forgot password" link and typed in what they thought was their user/nickname and typed in 71tr. Our system automatically resets the password and sends it to the registered email address of that account. If this happens often, you should consider changing your nickname to one that is not as common. ;-)

I can assure you that none of our data has been stolen..... Also, the 6-PACK database holds no financial data for any of it's users.

Questions or concerns about your account at 6-PACK would best be sent to the webmaster their rather than posted on a different forum not directly related to 6-PACK.

As for our Hacker...... There are 3 different types of hackers on the net...

1. Punk Kids that want to show off

2. Individuals or groups who simply want to direct their anger at a specific person, website or orgainization

3. Those who want to build awareness to the site owners about their security holes and want to sell their services.

The hacker that attacked this site & 6-PACK fits #3. He/She could have deleted all of the files and really messed things up if they really wanted to.

Having said that, we are constantly working to secure our site in this quickly ever changing Internet. No website is impregnable.

Mike
 
Mike thanks for the clarification and details. I'll stop worrying about my user details and be a bit more careful before jumping to conclusions. oh and i might change my username over there as well.

thanks
 
Back
Top