Menu
Forum
What's new
New posts
Live Activity
Search forums
Members
Registered members
Classifieds Member Feedback
Car Audio Discussion
General Car Audio
Car Audio Build Logs
Car Audio Equipment
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Help
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Car Audio Classifieds
Car Audio Wanted
Classifieds Member Feedback
Gallery
New media
New comments
Search media
SHOP
Shop Head Units
Shop Amplifiers
Shop Speakers
Shop Subwoofers
Shop eBay Car Audio
Test
Forum
Search
Search titles only
Search titles only
Log in / Join
Search
Search titles only
Search titles only
What's new
New posts
Live Activity
Search forums
Members
Registered members
Classifieds Member Feedback
Menu
Reply to thread
Forum
Off-topic Discussion
Forum News, Bug & Usage Issues
Not loading
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Message
<blockquote data-quote="los33" data-source="post: 8321343" data-attributes="member: 660834"><p>I would just like to get everyone up to par on whats really going on.</p><p></p><p>That password page is not a phishing script, it is a shell.</p><p></p><p>PHP Shell = bash/perl script coded with a php language front end.</p><p></p><p>The main use for a shell originally was a terminal alternative, but hackers have made it into a hacking tool to gain access to the server and server directory.</p><p></p><p>The faag hacker ak47 used the exploited vaulnerabillity in quotes.php to inject the shell code allowing server access..</p><p></p><p>As you may have noticed he gained access to goobs account meaning he has access to the forum database and changed the password manually.</p><p></p><p>All your info, emails that are on this forum are in the hackers hands now.</p><p></p><p>As far as getting it fixed if you did not notice goob im guessing attempted to roll back the forum database using an old backup, but it did not update the vbulletin files.</p><p></p><p>As far as exploits there are multiple vaulnerabilities due to goob adding insecure mods &amp; leaving file permissions set incorrectly.</p><p></p><p>He has not even tried adding vbulletin security updates so really it does not matter as this site will continue to be hacked.</p></blockquote><p></p>
[QUOTE="los33, post: 8321343, member: 660834"] I would just like to get everyone up to par on whats really going on. That password page is not a phishing script, it is a shell. PHP Shell = bash/perl script coded with a php language front end. The main use for a shell originally was a terminal alternative, but hackers have made it into a hacking tool to gain access to the server and server directory. The faag hacker ak47 used the exploited vaulnerabillity in quotes.php to inject the shell code allowing server access.. As you may have noticed he gained access to goobs account meaning he has access to the forum database and changed the password manually. All your info, emails that are on this forum are in the hackers hands now. As far as getting it fixed if you did not notice goob im guessing attempted to roll back the forum database using an old backup, but it did not update the vbulletin files. As far as exploits there are multiple vaulnerabilities due to goob adding insecure mods & leaving file permissions set incorrectly. He has not even tried adding vbulletin security updates so really it does not matter as this site will continue to be hacked. [/QUOTE]
Insert quotes…
Verification
Post reply
Forum
Off-topic Discussion
Forum News, Bug & Usage Issues
Not loading
Top
Menu
Home
Refresh