We were hacked...

Just what it says.

Moderator: peterZ

Post Reply
User avatar
rob
Posts: 773
Joined: 03 Jun 2009, 13:50
E-book readers owned: iRex iLiad, Kindle 2
Number of books owned: 4000
Country: United States
Location: Maryland, United States
Contact:

We were hacked...

Post by rob »

On or around midnight ET today, the forum was hacked. I restored the forum to the state it was two days ago, so some of your posts have no doubt been lost. Sorry :/
The Singularity is Near. ~ http://halfbakedmaker.org ~ Follow me as I build the world's first all-mechanical steam-powered computer.
Anonymous2
Posts: 97
Joined: 18 Oct 2011, 16:05

Re: We were hacked...

Post by Anonymous2 »

The Wiki is still affected. I haven't found any recent phpBB exploits, but DreamHost was hacked about a month ago.
User avatar
rob
Posts: 773
Joined: 03 Jun 2009, 13:50
E-book readers owned: iRex iLiad, Kindle 2
Number of books owned: 4000
Country: United States
Location: Maryland, United States
Contact:

Re: We were hacked...

Post by rob »

It's possible that phpBB was attacked through some other part of the site. In any case, we're taking whatever we have to offline. At least the forums are now clean.
The Singularity is Near. ~ http://halfbakedmaker.org ~ Follow me as I build the world's first all-mechanical steam-powered computer.
thinkJason
Posts: 35
Joined: 19 Jan 2012, 19:51
E-book readers owned: iPad
Number of books owned: 1000
Location: Denver, CO

Re: We were hacked...

Post by thinkJason »

I was wondering where all those posts went. No good!
dR_wH0
Posts: 2
Joined: 25 Mar 2012, 16:32
Number of books owned: 0
Country: Greece

Re: We were hacked...

Post by dR_wH0 »

phpBB forums tend to be a good target for hacks/injections. At least more than other forum platforms. You should try and keep daily backups and install updates accordingly.

Cheers,
User avatar
daniel_reetz
Posts: 2812
Joined: 03 Jun 2009, 13:56
E-book readers owned: Used to have a PRS-500
Number of books owned: 600
Country: United States
Contact:

Re: We were hacked...

Post by daniel_reetz »

Yep, we do keep daily backup, and the problem was not the forum - the hack came through our wordpress theme, which used an extension with a recent vulnerability. Once it had infected one PHP file it was able to take the entire site. We went back a couple days just to be sure we were in the clear.
Post Reply