You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 214 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
Nuke Cops :: View topic - Hacked By Akincilar Tim For Turkey [ ]
 Forum FAQ  •  Search  •   •  Memberlist  •  Usergroups   •  Register  •  Profile •    •  Log in to check your private messages  •  Log in

 
Post new topic  Reply to topicprinter-friendly view
View previous topic Log in to check your private messages View next topic
Author Message
azism
Captain
Captain


Joined: May 20, 2004
Posts: 317

Location: Tucson, AZ

PostPosted: Sat Sep 09, 2006 10:12 am Reply with quoteBack to top

This past weekend my host (along with a number of other hosts) was hacked by somehting called "This Site Hacked By Akincilar Tim For Turkey". This hacker was able to take every files starting with index, be it html or php, and replace it with the following text:
Quote:

English:
Abd*İsrael*Pkk is the world's most bloody and brutal terrorism group. They killed approximately 35.000 innocent people without any cruel till now. All the nations and states must know which are supporting these bloody and brutal terrorism groups, supporting terrorism will brings suffer and deathness. We are always be a side of peace. but we have always some words to say these terrorists "which" wants to seperate us and kill innocent people.

Be God's Curse On You !

We Will be Your Curse on Cyber World !

This Site Hacked By Akincilar Tim For Turkey

Turkish:
Abd*İsrail*Pkk dünyanın en kanlı, vahşi terör örgütlerinden biridir. Bugüne kadar 35.000 masum insanı gözünü kırpmadan katletti.bu kanlı terör örgütüne destek olan tüm ülkeler bilmelidirler ki terörün yandaşı olmak onlara da acı ve ölümden başka birşey getirmeyecektir. Bizler daima barışın yanındayız. Ancak bizleri parçalamaya kalkanlara, masum insanları öldürenlere ve buna demokrasi, insan hakları diyenlere de bir çift lafımız her zaman vardır.

Allah'ın Laneti Üzerinize Olsun !

Sanal Alemdeki Lanetinizde Artık Biziz !

I guess I didn't realize how many index files there are on my site/ As my latest backup was a week old, I have been busy replacing all the index files with the original ones. My question is would something like this hacking attack be more preventable if all the index files were read only to everyone? I believe they may have been that way to start with but I am not sure of it.

I know I am having to move everything to a new host as this attack succeeded in putting my host out of business, along with a number of other hosts.

_________________
Tom Wills
TI-99/4A On-Line UG Administrator
http://www.ti99ers.org/
Find all posts by azismView user's profileSend private messageVisit poster's website
HalJordan
Support Staff
Support Staff


Joined: Aug 07, 2004
Posts: 1117

Location: Somewhere around Hunan, China

PostPosted: Sat Sep 09, 2006 2:22 pm Reply with quoteBack to top

All your files should be set to rw-r--r-- (644) -- only read-write for the owner/ftp admin, and folders rwxr-xr-x (755)-- only writeable for the owner/ftp admin. Most Apache servers and ftp clients default to these settings, but there are always exceptions. Doublecheck those permissions. If you have the capability, you should schedule a cron job to backup your files every week or so. Consult with your host for advice.

_________________
Obedezco, pero no cumplo.

Proprietor, www.computernewbie.info
Support staff, www.nukecops.com
Find all posts by HalJordanView user's profileSend private messageSend e-mailVisit poster's websiteAIM Address
azism
Captain
Captain


Joined: May 20, 2004
Posts: 317

Location: Tucson, AZ

PostPosted: Tue Sep 19, 2006 1:36 am Reply with quoteBack to top

In my case, the host, Qubefactor.com, was completely hacked to the point that he is quitting the business. I hear this happened to others also. Found out he hacked every file starting with index, home and main, no matter what type it was. I had a backup so I was okay and I have now relocated my site.

_________________
Tom Wills
TI-99/4A On-Line UG Administrator
http://www.ti99ers.org/
Find all posts by azismView user's profileSend private messageVisit poster's website
Display posts from previous:      
Post new topic  Reply to topicprinter-friendly view
View previous topic Log in to check your private messages View next topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



Powered by phpBB © 2001, 2005 phpBB Group

Ported by Nuke Cops © 2003 www.nukecops.com
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::
Powered by TOGETHER TEAM srl ITALY http://www.togetherteam.it - DONDELEO E-COMMERCE http://www.DonDeLeo.com - TUTTISU E-COMMERCE http://www.tuttisu.it
Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
Page Generation: 0.036 Seconds - 198 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::