Server (was) under attack


Page 1 of 1
 
 

Post Server (was) under attack

#1  Tormie 12 Oct 2011 21:28

Hi friends. some days ago I received this message from the company that hosts Posetteforever :

Code: [Download] [Hide] [Select]
Dear Client,


We were informed yesterday, Wednesday 5 October, about an improper access to our internal system.


As far as we can presently reconstruct, the attackers could have been able to access internal
customer data on Hetzner Online's administrative systems.


As soon as we were made aware of this, we immediately began to reconstruct the incident.
To our present knowledge we have no information regarding data abuse from customers.
Unfortunately, it is not possible for us to exclude this possibility completely and we would
therefore ask that you change all passwords on your Hetzner system immediately as a precaution.


We recommend that you do not use identical passwords for multiple systems.


We make every effort to ensure that your customer data is in safe hands. Data security is a
very high priority for us. However, it is unfortunately not possible to completely exclude
incidents such as this from happening.


To ensure complete and transparent clarification, we shall shortly be reporting this
incident to the regulatory authorities.


The current status of the investigation may be seen on hetzner-status.de


We thank you for your understanding and for placing your trust in us.


Best regards,


I wanted to keep you appraised even if I think that no action is needed by the users of this site for a couple of reasons:

-There are no valuable data on the site (I know that everything here has a big value for us, but I'm talking of more material things like credit card numbers) and in case of attack I can access a backup both for the contents and the database

-The password encryption is not the standard one on PF, I mean, nothing that an expert hacker could not understand in minutes but this would suppose the intention to attack this site and there is no reason to do it againts  a place that has no valuable data, by a serious hacker. In the past there was a defacement of the main page of the site but it was done using a easy code readily available on the net, there was nothing special if not follow the instruction and find a site mantained by a hobbyist ( ). Anyway the passwords are made with two keys, one is here and the other one is given by your browser, the one here is useless alone, I can't even retrieve a password, it has to be changed if someone forgets it.

Anyway, they hacked for sure the passwords of the email addresses of the site, that doesn't mean you, but for example my own email address "@posetteforever.com" and the one of Posy and Angela... If you remember a couple of weeks ago I asked on the shoutbox if someone noticed a strange behaviour by their email client, I was receiving replies from addresses that looked like they were receiving spam from me... Someone got the passwords and kept sending spam by the email addresses of the site, so I changed'em all and also changed the fake email address of the site from "donotreply" to "noreply".

I also warned the provider but they noticed the attack days later ...

This company performs a lot of mantainance almost every day, at night, here in Europe, that means afternoon in the American continent, I'm sorry about it. It's a problem that has no solution because every company works on the servers at night, so when PF was hosted in Arizona I had the same problem here, sometimes they were working on the site while here was not sleep time...

(For who doesn't know it already, PF is currently located near Frankfurt, Germany)

that's all, in any case if you notice something strange bump me...

P.S. if the site is down, you can check this page:

http://www.hetzner-status.de/en.html

in order to see if they are currently working on our server (which address is www188.your-server.de )
 




____________
 
avatar
it.png Tormie Gender: Male
Posette enthusiast
Posette enthusiast
Life + 1
Life + 1
Renderosity Ban
Renderosity Ban
 
Joined: March 2003
Posts: 8280
Tomatoes 72512
Lemons 50450
hearts 5031

  • Back to top Page bottom
 

Post Re: Server (was) Under Attack

#2  ahjah 12 Oct 2011 23:05


There have been several similar attacks over the last days around the web. Two days ago i recieved a mail from the webmasters of winehq (That's the forum of the developers of the wine application on linux, where i registered some time ago) about their user database being hacked, as well there's been an attack on Sony's
somethings going on, something a little bit bigger...
 




____________
Image
 
avatar
blank.gif ahjah Gender: Male
Posette enthusiast
Posette enthusiast
Life + 1
Life + 1
Chief
Chief
Old Timer
Old Timer
 
Joined: April 2003
Location: detmold/germany
Posts: 2801
Tomatoes 4160
Lemons 519
hearts 2130

  • Back to top Page bottom
 

Post Re: Server (was) Under Attack

#3  tda42 13 Oct 2011 13:23

A German Internet writing English to an Italian.    Yep! It's been hacked alright!
 




____________
Two wrongs don't make a right.
But six left turns will get you around the block
and back in the driveway again.
 
avatar
blank.gif tda42 Gender: Male
...Pink Paws...
...Pink Paws...
Posette enthusiast
Posette enthusiast
Life + 1
Life + 1
Old Timer
Old Timer
 
Joined: November 2003
Location: Tennessee, The Great Polecat State
Posts: 2551
Tomatoes 22450
Lemons 12546
hearts 3910

  • Back to top Page bottom
 

Post Re: Server (was) under attack

#4  Tormie 13 Oct 2011 22:03

I want also to inform you that by the end of the year the domain name will be transferred to another company, probably to the same company that keeps the web space and the database.
This is because the old company retouched a little too much the prices (maybe in order to pay the many commercials and the sponsorship on a Nascar car).

Yes, to add complication to what kenny said, actually the domain name is registered in Arizona, the site is in Germany, I'm in Italy and it's difficult to know "who is who" even because a "whois" on Posetteforever goes nowhere

( the real owner is Posy , no jokes )
 




____________
 
avatar
it.png Tormie Gender: Male
Posette enthusiast
Posette enthusiast
Life + 1
Life + 1
Renderosity Ban
Renderosity Ban
 
Joined: March 2003
Posts: 8280
Tomatoes 72512
Lemons 50450
hearts 5031

  • Back to top Page bottom
 

Post Re: Server (was) Under Attack

#5  Chromium 15 Oct 2011 12:05

Does Posy, have a credit card too.

(Did Tormie, leave all to Posy, in his will?)
 



 
avatar
gb.png Chromium Gender: Male
Old Timer
Old Timer
Life + 1
Life + 1
Tech Chief
Tech Chief
 
Joined: November 2010
Location: UK
Posts: 577
Tomatoes 5400
Lemons 378
hearts 1083

  • Back to top Page bottom
 

Post Re: Server (was) Under Attack

#6  Tormie 15 Oct 2011 13:54

Chromium wrote: [View Post]
Does Posy, have a credit card too.


Yes, mine
 




____________
 
avatar
it.png Tormie Gender: Male
Posette enthusiast
Posette enthusiast
Life + 1
Life + 1
Renderosity Ban
Renderosity Ban
 
Joined: March 2003
Posts: 8280
Tomatoes 72512
Lemons 50450
hearts 5031

  • Back to top Page bottom
 

Post Re: Server (was) Under Attack

#7  tda42 15 Oct 2011 14:15

And The Will?
 




____________
Two wrongs don't make a right.
But six left turns will get you around the block
and back in the driveway again.
 
avatar
blank.gif tda42 Gender: Male
...Pink Paws...
...Pink Paws...
Posette enthusiast
Posette enthusiast
Life + 1
Life + 1
Old Timer
Old Timer
 
Joined: November 2003
Location: Tennessee, The Great Polecat State
Posts: 2551
Tomatoes 22450
Lemons 12546
hearts 3910

  • Back to top Page bottom
 

Post Re: Server (was) under attack

#8  Tormie 15 Oct 2011 15:35

I don't think Posy would need material things because in the virtuql land thet create everything at will
 




____________
 
avatar
it.png Tormie Gender: Male
Posette enthusiast
Posette enthusiast
Life + 1
Life + 1
Renderosity Ban
Renderosity Ban
 
Joined: March 2003
Posts: 8280
Tomatoes 72512
Lemons 50450
hearts 5031

  • Back to top Page bottom
 


HideWas this topic useful?
Link this topic
URL
BBCode
HTML
HideSimilar Topics
Topic Author Forum Replies Last Post
No new posts A spammer's attack Tormie Shebeen, the Staff forum 3 08 May 2006 10:54 View latest post
Guest
No new posts Spammers attack ! Tormie Shebeen, the Staff forum 4 15 Aug 2006 22:44 View latest post
Tormie
No new posts Warning Spam attack! guiltypleasures Guiltypleasures' Clubhouse 26 06 Oct 2003 06:00 View latest post
Guest
No new posts Server error Tormie Whip The Admins... 9 07 Jul 2010 21:00 View latest post
tda42
No new posts Server problem Tormie Whip The Admins... 15 23 Jan 2012 20:31 View latest post
Chromium

Page 1 of 1
 



Users browsing this topic: 0 Registered, 0 Hidden and 0 Visitors
Registered Users: None