Menu
Forum
General Car Audio
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Build Logs
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Home Audio
Off-topic Discussion
The Lounge
What's new
Search forums
Gallery
New media
New comments
Search media
Members
Registered members
Current visitors
Classifieds Member Feedback
SHOP
Shop Head Units
Shop Amplifiers
Shop Speakers
Shop Subwoofers
Shop eBay Car Audio
Log in / Register
Forum
Search
Search titles and first posts only
Search titles only
Search titles and first posts only
Search titles only
Log in / Join
What’s new
Search
Search titles and first posts only
Search titles only
Search titles and first posts only
Search titles only
General Car Audio
Subwoofers
Speakers
Amplifiers
Head Units
Car Audio Build Logs
Wiring, Electrical and Installation
Enclosure Design & Construction
Car Audio Classifieds
Home Audio
Off-topic Discussion
The Lounge
What's new
Search forums
Menu
Reply to thread
Forum
Off-topic Discussion
Forum News, Bug & Usage Issues
Not loading
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Message
<blockquote data-quote="los33" data-source="post: 8321343" data-attributes="member: 660834"><p>I would just like to get everyone up to par on whats really going on.</p><p></p><p>That password page is not a phishing script, it is a shell.</p><p></p><p>PHP Shell = bash/perl script coded with a php language front end.</p><p></p><p>The main use for a shell originally was a terminal alternative, but hackers have made it into a hacking tool to gain access to the server and server directory.</p><p></p><p>The faag hacker ak47 used the exploited vaulnerabillity in quotes.php to inject the shell code allowing server access..</p><p></p><p>As you may have noticed he gained access to goobs account meaning he has access to the forum database and changed the password manually.</p><p></p><p>All your info, emails that are on this forum are in the hackers hands now.</p><p></p><p>As far as getting it fixed if you did not notice goob im guessing attempted to roll back the forum database using an old backup, but it did not update the vbulletin files.</p><p></p><p>As far as exploits there are multiple vaulnerabilities due to goob adding insecure mods &amp; leaving file permissions set incorrectly.</p><p></p><p>He has not even tried adding vbulletin security updates so really it does not matter as this site will continue to be hacked.</p></blockquote><p></p>
[QUOTE="los33, post: 8321343, member: 660834"] I would just like to get everyone up to par on whats really going on. That password page is not a phishing script, it is a shell. PHP Shell = bash/perl script coded with a php language front end. The main use for a shell originally was a terminal alternative, but hackers have made it into a hacking tool to gain access to the server and server directory. The faag hacker ak47 used the exploited vaulnerabillity in quotes.php to inject the shell code allowing server access.. As you may have noticed he gained access to goobs account meaning he has access to the forum database and changed the password manually. All your info, emails that are on this forum are in the hackers hands now. As far as getting it fixed if you did not notice goob im guessing attempted to roll back the forum database using an old backup, but it did not update the vbulletin files. As far as exploits there are multiple vaulnerabilities due to goob adding insecure mods & leaving file permissions set incorrectly. He has not even tried adding vbulletin security updates so really it does not matter as this site will continue to be hacked. [/QUOTE]
Insert quotes…
Verification
Post reply
Forum
Off-topic Discussion
Forum News, Bug & Usage Issues
Not loading
Top
Menu
What's new
Forum list
