1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Defaced Forum....

MikeS4 Feb 6, 2008

  1. MikeS4

    MikeS4 MikeS4

    157
    0
    16
    Not quite sure whats happened here but, i'm also a memeber of a BMW Z-roadster forum called zroadster.net. I just tried clicking on my bookmark and was greeted with a rather disturbing message. The link is below but must warn you all its not work safe:

    http://www.zroadster.net/forum/index.php

    Is this just a hacker showing off or something else?
     
  2. FactionOne

    FactionOne Administrator Staff Member Administrator

    3,272
    182
    63
    Yep, most definitely a hack.

    The sad thing is, the dude responsible will, in a few years, realise that he/she is a fool wasting their own time just as much as other peoples'; and then the penny might drop that they could put their knowledge and expertise to better use as a security consultant earning a more than comfortable living.

    Regards,

    Rob.
     
  3. Onlyme

    Onlyme Member

    593
    1
    16
    Should people be clicking on that link above though ?
     
  4. FactionOne

    FactionOne Administrator Staff Member Administrator

    3,272
    182
    63
    There doesn't appear to be anything nasty/risky in the code for the page so it's probably computer-safe to click - it's not work-safe because it's got repetition of a popular profanity which begins with F.

    I guess for safety's sake it's just better not to click it! You're not missing much!

    Regards,

    Rob.
     
  5. Rev-head

    Rev-head Active Member

    2,987
    7
    38
    Must be a bmw hater
     
  6. mister.c.

    mister.c. Active Member TeamMisano Audi A3

    642
    112
    43
    We'd better be careful as well then!
     
  7. Caesium

    Caesium My BM is fixed! VCDS Map User

    4,879
    4
    36
    what drives people to be such shits?
     
  8. MikeS4

    MikeS4 MikeS4

    157
    0
    16
    Did a quick google of the hackers tag & looks like other forums have been hit, hope ASN's security's up to date...
     
  9. Nickynibbles

    Nickynibbles Damn it where's 7th gear when you need it?!

    845
    2
    16
    The site hasnt been infected with a virus, I opened it at work where we use a hardcore firewall & anti-virus system and it showed it as safe. I can trust in this as I work for a laaaaaarge UK bank, and we're meant to be very IT security aware, else you'd lose all your money!

    Anyway, to me it looks like a kid hacker having a laugh at someone elses expense. Its not a hard thing to do, in fact you can download password hacking programs off the net and brute force hack a basic web hosting server in a very short time. This goes back to recent thoughts on here regarding the state of the nation etc. We can be safe in the knowledge that most of the morons out there who'd think this was a funny thing to do are too illiterate to even know where to start!!

    On a side note if you own a website i'd recommend you have a password including letters & numbers mixed up, the longer the better obviously. Dont make it easy for have-a-go hackers to do this sort of thing.
     
  10. FactionOne

    FactionOne Administrator Staff Member Administrator

    3,272
    182
    63
    Yep...

    A bare minimum of 8 characters, no dictionary words, alphabetical characters - of upper and lower case, numeric and special characters (!#?&@_ etc.) are 'strong' passwords.

    Also another good defence is to block IP addresses (or better yet, IP and MAC address) after 3 or 5 incorrect attempts...

    Regards,

    Rob

    PS- Banks' Firewalls and Anti-Virus aren't as effective at keeping money in my account as them learning the price of a stamp would be! ;)
     
  11. Onlyme

    Onlyme Member

    593
    1
    16
    How the hell can you tell that, I best send you some porn links to try out for me before I click them :hubbahubba:
     
  12. FactionOne

    FactionOne Administrator Staff Member Administrator

    3,272
    182
    63
    :lmfao:

    I'm not sure my mrs would be too happy with that idea!

    To answer your question though - a bit of good old fashioned geekery - looking at the code for the page there's just a style-sheet that displays the hack over the top of the original page. All the code for the proper page is largely intact. Conscientious hacking to an extent I guess - a lot of hackers would just delete everything once they'd gotten in.

    Spotting the profanities just comes down to recognising words I've heard when colleagues have made an unrecoverable error! ;)

    My advice to you though is use:

    1) Mozilla Firefox instead of Internet Exploder
    2) Symantec Anti-Virus Corporate Edition or Kaspersky Anti-Virus
    3) Any half decent free Firewall (Sygate if you can find a download (Symantec bought them to remove freeware from the marketplace) or Comodo are alright)
    3a) Maybe PC Tools Spyware Doctor (handy but with the others in place not essential)

    ...And you'll go blind before your computer breaks! ;)

    Regards,

    Rob
     

Share This Page