amiga.org
     
iconAll times are GMT -6. The time now is 01:43 PM. | Welcome to Forum, please register to access all of our features.

» Amiga.org » Amiga computer related discussion » General chat about Amiga topics » "Amibay Hacked Beware ! "

General chat about Amiga topics This forum is for conversations which are specifically "Amiga" related, but don't fit into other categories. Contents of this forum do appear on the main page, unlike Talk About. If a subject appears to be non-related, it will be moved to Talk About.

Reply
 
Thread Tools Display Modes
Old 05-11-2012, 05:04 PM   #1
rockape
Technoid
Points: 7,384, Level: 57 Points: 7,384, Level: 57 Points: 7,384, Level: 57
Activity: 4% Activity: 4% Activity: 4%
 
rockape's Avatar
 
Join Date: Nov 2005
Location: Lincolnshire, England.
Posts: 288
Blog Entries: 1
Exclamation "Amibay Hacked Beware ! "
Hi,

I tried logging into Amibay using an A1200 and got:

"Unable to add cookies, header already sent.
File: /homepages/1/d277227762/htdocs/amibay/forum/index.php(1) : eval()'d code
Line: 7"

Regards, Michael

aka rockape
__________________
"A veteran is someone who, at one point in their life wrote a blank check made payable to 'Their Country' for an amount of 'up to and including their life'.
rockape is offline   Reply With Quote
Old 05-11-2012, 05:16 PM   #2
CritAnime
Commodore is Awesome
Points: 4,884, Level: 44 Points: 4,884, Level: 44 Points: 4,884, Level: 44
Activity: 30% Activity: 30% Activity: 30%
 
CritAnime's Avatar
 
Join Date: Jun 2011
Location: UK
Posts: 1,031
Blog Entries: 1
Default Re: "Amibay Hacked Beware ! "
Thats two Amiga websites going squiffy.
__________________
Writer for Commodore Is Awesome.
==========================================
CritAnime is offline   Reply With Quote
Old 05-11-2012, 05:19 PM   #3
orb85750
Defender of the Faith
Points: 14,653, Level: 78 Points: 14,653, Level: 78 Points: 14,653, Level: 78
Activity: 4% Activity: 4% Activity: 4%
 
orb85750's Avatar
 
Join Date: Aug 2007
Location: USA
Posts: 1,196
Default Re: "Amibay Hacked Beware ! "
"Threat has been detected," says AVAST.
orb85750 is offline   Reply With Quote
Old 05-11-2012, 05:53 PM   #4
Akiko
VIP / Donor
Points: 11,235, Level: 69 Points: 11,235, Level: 69 Points: 11,235, Level: 69
Activity: 8% Activity: 8% Activity: 8%
 
Akiko's Avatar
 
Join Date: Jun 2002
Location: UK
Posts: 932
Default Re: "Amibay Hacked Beware ! "
Quote:
Originally Posted by orb85750 View Post
"Threat has been detected," says AVAST.
Got the same warning.
Akiko is offline   Reply With Quote
Old 05-11-2012, 05:57 PM   #5
Duce
Off to greener pastures
Points: 5,290, Level: 46 Points: 5,290, Level: 46 Points: 5,290, Level: 46
Activity: 27% Activity: 27% Activity: 27%
 
Join Date: Jul 2009
Posts: 1,056
Default Re: "Amibay Hacked Beware ! "
Yep - avoid it.
Duce is offline   Reply With Quote
Old 05-11-2012, 11:31 PM   #6
mfilos
Cult Member
Points: 7,318, Level: 56 Points: 7,318, Level: 56 Points: 7,318, Level: 56
Activity: 18% Activity: 18% Activity: 18%
 
mfilos's Avatar
 
Join Date: Aug 2005
Location: Athens/Greece
Posts: 615
Blog Entries: 1
Default Re: "Amibay Hacked Beware ! "
Root indeed has issues but you can log at any Amibay address (for example new threads) just fine:
http://www.amibay.com/search.php?do=getnew

It seems that the initial page only has the issues and it's currently being looked for fixing.
__________________
Visit my Amiga blog here
- A4000D: 060@50/604@180, 384MB, ACard+80GB HD, SCSI Multicard Reader, DVD-RW, Grex4000 (RTG/Sound/NIC), Indivision 4000, RTG/AGA AutoSwitch, Deneb, ZorRAM
- A600: 030@37.5, 64MB, A604, 16GB CF, Indivision ECS, Subway, MAS-Player (internal), Custom Audio Mixer
mfilos is offline   Reply With Quote
Old 05-12-2012, 01:13 AM   #7
Lurch
Defender of the Faith
Points: 12,739, Level: 73 Points: 12,739, Level: 73 Points: 12,739, Level: 73
Activity: 30% Activity: 30% Activity: 30%
 
Lurch's Avatar
 
Join Date: Dec 2003
Location: Auckland, New Zealand
Posts: 1,058
Send a message via MSN to Lurch
Default Re: "Amibay Hacked Beware ! "
Hacked websites yet nobody appears to be overally concerned or upset? What has amiga.org got in place?

Aminet Amibay... someone is upset :-(
__________________
-=[LurcH]=-
A500 Plus·Black·030@14Mhz·2MB·8MB·A590·KS 3.1·WB 3.1·2GB CFCard·Mechware SCSI Card Reader·Indivision ECS
A1200 Tower·060@80MHz·2MB·32MB·KS 3.9·WB 3.9·Indivision AGA MkII·40GBHDD·FastATA·HxC2001·WPA2 Wireless·Subway USB·Pico ITX PSU·PS2/USB Mouse·Lyra2
Amiga Forever 2012 (Thanks MCB)
PowerMac G4·MorphOS Box·SBlive·5 port USB card
Indivision ECS (Chris at Amigakit is da'Man)
A1200 board·new caps·timing fixes (another awesome job Amigakit)
www.taf.org.nz
Lurch is offline   Reply With Quote
Old 05-12-2012, 04:22 AM   #8
WotTheFook
Technoid
Points: 4,548, Level: 42 Points: 4,548, Level: 42 Points: 4,548, Level: 42
Activity: 2% Activity: 2% Activity: 2%
 
WotTheFook's Avatar
 
Join Date: Mar 2007
Location: Mancland, UK
Posts: 155
Default Re: "Amibay Hacked Beware ! "
It's not just Amiga sites (although you forgot ClassiAmiga that has also been hit).

Lots of sites are getting hacked in recent days, and not just vBulletin, but also WordPress, Joomla, and lots of others including popular ecommerce sites.

It's a random, 'carpet bombing' style of attack. A.org isn't safe from this either.

WotTheFook aka Merlin
WotTheFook is offline   Reply With Quote
Old 05-12-2012, 06:16 AM   #9
golem
Premium Member
Points: 9,445, Level: 65 Points: 9,445, Level: 65 Points: 9,445, Level: 65
Activity: 2% Activity: 2% Activity: 2%
 
golem's Avatar
 
Join Date: May 2002
Location: Nottingham, UK
Posts: 361
Default Re: "Amibay Hacked Beware ! "
McAfee detects trojan JS-Exploit/Blacole.x
__________________

A1200 desktop, Blizzard 1260, Indivision Mk II, SCSI Jaz, Ethernet through powerline,
A1200 desktop, Blizzard 1230, ProNETed to other machine. Both OS3.9 BB2
golem is offline   Reply With Quote
Old 05-12-2012, 06:30 AM   #10
TheMagicM
Forums Moderator
Points: 18,202, Level: 85 Points: 18,202, Level: 85 Points: 18,202, Level: 85
Activity: 2% Activity: 2% Activity: 2%
 
TheMagicM's Avatar
 
Join Date: Feb 2002
Location: San Antonio TEXAS!! USA!!!
Posts: 2,369
Default Re: "Amibay Hacked Beware ! "
I manage a few servers I built for customers.. they had that happen also, but it wasnt the server and site that was hacked... but the adware system that was installed. As soon as you hit the site, it would want you to download an executable..which was a virus. Once I removed the "adware banners" software, cleaned up the database where adware banners kept its data, it was all good.
__________________
my general tech blog when I'm bored...
http://www.thegeekprophet.com
TheMagicM is offline   Reply With Quote
Old 05-12-2012, 06:44 AM   #11
Piru
' union select name,pwd--
Points: 30,457, Level: 100 Points: 30,457, Level: 100 Points: 30,457, Level: 100
Activity: 69% Activity: 69% Activity: 69%
 
Piru's Avatar
 
Join Date: Aug 2002
Location: Helsinki, Finland
Posts: 6,946
Default Re: "Amibay Hacked Beware ! "
Quote:
Originally Posted by TheMagicM View Post
I manage a few servers I built for customers.. they had that happen also, but it wasnt the server and site that was hacked... but the adware system that was installed. As soon as you hit the site, it would want you to download an executable..which was a virus. Once I removed the "adware banners" software, cleaned up the database where adware banners kept its data, it was all good.
OpenX by any chance?

OpenX had a nasty Cross-Site Request Forgery vulnerability that's being exploited: http://www.infosecisland.com/blogvie...Exploited.html

However at least aminet incident wasn't case of OpenX banner since the actual site served the malicious javascript.
Last edited by Piru; 05-12-2012 at 06:46 AM..
Piru is offline   Reply With Quote
Reply

Bookmarks

Tags
amibay hacked beware

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump