Username: 
Password: 
Restrict session to IP 

Server hacked

Global Rank: 73
Totalscore: 213029
Posts: 148
Thanks: 206
UpVotes: 108
Registered: 16y 291d
Kender`s Avatar



Last Seen: 2y 262d
The User is Offline
Server hacked
Google/translate1Thank You!0Good Post!1Bad Post! link
The company that set up and manages my server has made some basic security mistakes and now we're stuck with some Brazilian hackers on my machine.
So far they've only been using it to send out spam and attack new targets, but there's an irc server and a couple of bots running on it that allow full remote control.

It looks like they got in because the sshd is allowing root to log in and the root pwd may not have been strong enough.

Since I'm paying for a fully managed service and I'm still stuck with a broken ankle I really don't feel like taking action myself.
I spoke to the guys on the phone and they promised me to start working on it in an hour or so. We'll just have to wait and see.

Please keep an eye out for strange behavior on the site until it's fixed.

Sorry for any inconvenience..
Global Rank: 73
Totalscore: 213029
Posts: 148
Thanks: 206
UpVotes: 108
Registered: 16y 291d
Kender`s Avatar



Last Seen: 2y 262d
The User is Offline
Server hacked
Google/translate1Thank You!0Good Post!1Bad Post! link
Okay, everything should be back to normal.
I've given the company maintaining my server a few security tips and they've implemented some of them as well as some additional security features.
Let's hope that keeps those hackers out..
Global Rank: 172
Totalscore: 115509
Posts: 166
Thanks: 164
UpVotes: 121
Registered: 16y 284d
Z`s Avatar



Last Seen: 1y 94d
The User is Offline
Server hacked
Google/translate1Thank You!1Good Post!0Bad Post! link
Some e-mails from wechall were marked as spam by gmail last week, so I bet wechall was on RBL, but luckily right now its no longer on RBL, and the e-mails are not filtered.
Global Rank: 227
Totalscore: 94362
Posts: 1680
Thanks: 1358
UpVotes: 920
Registered: 16y 292d




Last Seen: 7d 15h
The User is Offline
Server hacked
Google/translate1Thank You!1Good Post!0Bad Post! link
Nice to see it get resolved and cleaned quickly.

I just want to post a note about account security on the internet:

It can always happen that one website gets hacked. You should keep that in mind when creating accounts.
What i want to say is: do not re-use passwords.

In the worst case scenario people are currently trying to crack the passwords in our database, and try the successfully cracked passwords on the connected email accounts. Your email can also be your login name on paypal, etc.
Also Z pointed out lately, that there could be even malicious site owners, that simply collect your passwords in plaintext.
At least you should not re-use important passwords anywhere.

Greetings
Gizmore
The geeks shall inherit the properties and methods of object earth.
Global Rank: 73
Totalscore: 213029
Posts: 148
Thanks: 206
UpVotes: 108
Registered: 16y 291d
Kender`s Avatar



Last Seen: 2y 262d
The User is Offline
Server hacked
Google/translate1Thank You!1Good Post!0Bad Post! link
Absolutely.

I myself use KeePass to create separate strong passwords for every login.
I also appreciate that I can now log in anywhere by simply pressing ctrl-alt-a

The security of my server has also been increased now.
There's a new tool called CSF installed. Root can no longer login through ssh and port 22 is restricted to only a few IP adresses in the firewall.
Global Rank: 84
Totalscore: 185820
Posts: 10
Thanks: 14
UpVotes: 8
Registered: 16y 241d



Last Seen: 10y 172d
The User is Offline
Server hacked
Google/translate1Thank You!1Good Post!0Bad Post! link
I know a brazilian hacker able to hack wechall for interest...

His name is 4ngr4r0x !

Let me know if you want to know more about him !

Go0d Luc4 !
Global Rank: 73
Totalscore: 213029
Posts: 148
Thanks: 206
UpVotes: 108
Registered: 16y 291d
Kender`s Avatar



Last Seen: 2y 262d
The User is Offline
Server hacked
Google/translate1Thank You!0Good Post!1Bad Post! link
Quote from totoiste

I know a brazilian hacker able to hack wechall for interest...
His name is 4ngr4r0x !
Let me know if you want to know more about him !

Have him contact me with the details and we can discuss a reward.
Global Rank: 84
Totalscore: 185820
Posts: 10
Thanks: 14
UpVotes: 8
Registered: 16y 241d



Last Seen: 10y 172d
The User is Offline
Server hacked
Google/translate1Thank You!0Good Post!1Bad Post! link
Kender,

I'm not a friend of 4ngr4r0x.

I just wanted to let you know that this bad guy could do that...

No necessary reward for totoiste ;-)
Global Rank: 73
Totalscore: 213029
Posts: 148
Thanks: 206
UpVotes: 108
Registered: 16y 291d
Kender`s Avatar



Last Seen: 2y 262d
The User is Offline
Server hacked
Google/translate1Thank You!0Good Post!1Bad Post! link
Ah well, there are probably hundreds of people out there who claim they can hack WeChall.
99% of them are bluffing and should be ignored.
The rest either inform us of a security hole or abuse the hole and hack the server.

Since this 4ngr4r0x has not contacted us and the server is running fine I have to assume he's bluffing so we'll just ignore that.
tunelko, quangntenemy, TheHiveMind, Z, balicocat, Ge0, samuraiblanco, arraez, jcquinterov, hophuocthinh, alfamen2, burhanudinn123, Ben_Dover, stephanduran89, braddie0, SwolloW, dangarbri, csuquvq have subscribed to this thread and receive emails on new posts.
1 people are watching the thread at the moment.
This thread has been viewed 3833 times.