So, we had a hacker(s) get through our defences overnight. We've locked down the site a bit more & restored yesterday's backup to make sure we got all the crap they uploaded. We lost forum posts made since yesterday as a result.
|
|
|
#1
So, we had a hacker(s) get through our defences overnight. We've locked down the site a bit more & restored yesterday's backup to make sure we got all the crap they uploaded. We lost forum posts made since yesterday as a result.
#2
Shiiiiiiit I sunk a few hours into posts in that time.
Ah wellllll, better safe than sorry. Thanks reki.
Originally Posted by Starblade
#3
I'm just glad I didn't update the Lets Play yesterday.
Also I feel sorry for Kirjava.
Let's Play Europa Universalis 3: Divine Wind
Let's Play Master of Magic: Abandoned
In the beginning there was nothing. Then Steam crashed.
#4
Yeah unfortunately, today's backup completed about 20 minutes after the hacker gained access, which made today's backup a bit useless.
#5
![[Vertigo]'s Avatar](avatars/avatar30739_14.gif "[Vertigo]'s Avatar"){kind=avatar}
Good that we got that cleared up.
What happens in Greenville, SC stays in Greenville, SC.
Poor, poor Kirjava.
#7
I changed password yesterday and it reverted back so I assume I need to change passwords again right
Is 20 pound for the weight like 30 pounds if a guy lifts?
REKISo either your little non-english speaking weightlifting neighbour has broken in to your house to borrow your computer & Relic forums login, or you're spinning us a line.. :p
#8
That is terrible news, Reki. I sincerely hope nothing serious was lost.
I assume we have sent out a Ninja patrol already to chop some heads off?
HWSHOTS | JST-ONLINE | HOMEWORLD ARCHIVES | CROSSFIRE
TEH ALL POWAFUL "PLEASE MAKE HOMEWORLD 3" PETITION
NEWS! "hwaccess.net" and related sites have a new home at
www.homeworldaccess.net. Still WIP.
Ouch. Any info on what was taken? I assume changing passwords is a given yes?
Just glad it's all back.
Let's sail in this sea of charms
Let's drown underneath the stars
Ninja patrol Homdax?! We have fucking VICKING HAMSTERS to take care of that, no reason to be sneaky with Ninjas!
Last edited by scoiatollo; 18th Jul 12 at 6:42 AM.
#12
Are Vicking hamsters somehow superior to Viking hamsters? I think you were sold fake Viking hamsters, scoia
@Meth: Uber did advise changing passwords on the FB page.
I am an Iron Warrior! Iron Within, Iron Without!
#13
I'm far too lazy with passwords nowadays, but at least this event has convinced me I need two different strong passwords at the very least.
#14
Goat-throwing hamsters?
G0at-thr0W1nG'H4m5T3rS . All done.
Or
9047-7|-|r0\/\/1|\|9 |-|4/\/\$73r$
Passphrase Password L33T Conversion Generator.
God dammit Gorb, of course they are superior, they have one additional letter and don't care about spelling!
I was a bit in a rush and the edit function seems to be borked on the mobile skin....
#16
http://lastpass.com/
http://keepass.info/
Ever since I started using LastPass, I've stopped caring about password hacks. 10 to 15-character long randomly generated mixed case alphanumeric (with symbols if allowed) passwords, different for every site. If there's an issue with a site, I just generate a new one. All of them are stored on LastPass's servers (with client-side 256-bit AES encryption thank you very much) behind one of the few passwords I keep track of, which is extremely long and complex, on top of an integration with Google Authenticator.
Eeeeeh.. lastpass is kind of a bullshit service in some ways seeing it only protects against "conventional" keyloggers if you don't bother with the premium service and even then it's still defeat able with certain malware.
I'd personally be far more worried about credit card and other personal information online than going out of my way to use a PW encryption service.
Edit:
Also, I'm guessing that patch for the XSS vulnerability 4.2.0 has is already installed?
It's some annoying bug so you can steal cookies of any user through the calender if I remember correctly.
If your computer is compromised, you have far bigger issues than lastpass getting cracked.
I was strictly speaking of server-side hacks (you know, like what we're speaking of in this very thread).
And every company is still vulnerable to social engineering attacks.
Let's say lastpass gets their security circumvented by means of SE'ing, they store a lot of payment data and other identifiable data.
Lots of companies do.
What I am speaking of is that there's a lot more to worry about that's stored on servers than just your passwords.
And I'd like to know if there was anything lifted from here that's actually valuable such as email lists etc..
#21
I hate remembering new passwords. Too many password for too many things.
I hope no lasting damage has been done? Has the modmin porn stash been compromized?
#22
No.
#23
Wait, can I download this porn stash?
Thanks.
New password: GorramH4x0rs
Gorb, but I was way ahead of you guys. I have no FB account. Ha!
@Reki
Thanks for the update.Luckily I had kept an email notification of a pm from TON_Viper that I got on tuesday morning. Phew!....I just have to re-post a problem I am having with my Hw2 mod though.
:
:
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
