aofroobs.com hacked..

Im getting blank screen with "MnSiNy HaCkEr ~~~ Saudi_Arabia‏" message when going to aofroobs.
Any change that our passwords there got compromised?

Again ? :(

Quote:

---

Originally Posted by Murskaink2

Any chance that our passwords there got compromised?

---

Yes. Very much so :(

The home page has been hacked again but the forum looks fine. http://www.aofroobs.com/forum/

Could there be a forum system in which passwords wouldn't get compromised?

Again... huh. I mean... what?

Not that hard to design your webpage a bit more secure.

http://w3schools.com/

Your welcome.

youre!

Quote:

---

Originally Posted by Shareida

Again... huh. I mean... what?

Not that hard to design your webpage a bit more secure.

http://w3schools.com/

Your welcome.

---

This ranks high among the most useless advice given on a forum so far.

Quote:

---

Originally Posted by Vhab

This ranks high among the most useless advice given on a forum so far.

---

A hundred times this. Just plug the security holes with some of those.

http://www.portugal-india.com/en/sit...les/cork_2.jpg

Amateurs.

Quote:

---

Originally Posted by heilt-do

youre!

---

You're!

I'm wondering where this deface came from, apache issue that wasn't patched ? Bad check in avatar uploads ?

In a few cases, defacing doesn't touch the database (the passwords) but that's up to the admins to check it out.

And never use the same password for a forum and your email.

Quote:

---

Originally Posted by boltgun

And never use the same password for a forum and your email.

---

Good advice. I would go a few steps further and say you should have unique passwords for all your important stuff (that being various e-mail accounts, net bank, etc).

I hope the people who run aofroobs find out how this was possible, and is able to plug the hole and hopefully prevent this from happening again.

Quote:

---

Originally Posted by Vhab

This ranks high among the most useless advice given on a forum so far.

---

So, writing the webpage has nothing to do with it's security whatsoever? :confused:

Enlighten me then.

Quote:

---

Originally Posted by Shareida

So, writing the webpage has nothing to do with it's security whatsoever? :confused:

Enlighten me then.

---

The HTML/Frontend code has nothing to do with server-side security.

Quote:

---

Originally Posted by Shareida

So, writing the webpage has nothing to do with it's security whatsoever? :confused:

Enlighten me then.

---

Hannavald's post sums it up perfectly.

I just use easy junk password for forums, I mean what is the worst thing, they can spam and get me banned? Get my email?

Quote:

---

Originally Posted by Vhab

Hannavald's post sums it up perfectly.

---

If it did, why did you have to reply again?

Quote:

---

Originally Posted by Demoder

The HTML/Frontend code has nothing to do with server-side security.

---

Thank you.

Quote:

---

Originally Posted by Shareida

If it did, why did you have to reply again?

---

To state how Hannavald's post sums it up perfectly.

Quote:

---

Originally Posted by Vhab

Hannavald's post sums it up perfectly.

---

How dare you imply i made a constructive post.

To purify myself of sin, I am now forced to meditate in the mountains for a month while eating only ketchup.

Steamforums got hacked today too.
It advertised a cheating site, that's why they are down since several hours.

http://www.abload.de/img/nebfkb5ji7.jpg

(Image censored so the cheating site is not advertised here)