Has Serious been hacked???

[poncho]

Every time I come onto this site Avast says threat detected Trojan Horse blocked. It also happens when I open a thread. Seems the site has been hacked by an annoying damn hacker!!!!

[Hellbent]

Yup. Working on it. Trying to avoid restoring a full backup but may need to. Site may go down for a couple hours tnite

[Ratickle]

Odd I can get in from my phone but not my reg computers.

[Bobcat]

It was the ghost of Don Aronow....

[Ratickle]

If I turn off my avast protection I can get in from home too.

[Ratickle]

It's taking more than a couple hours. Our host messed up the backup so the redo has become a major undertaking.

[Serious News]

There was/is some kind of a major hack attack on vbulletin sites around the world. Here are a couple quotes from vbulletin.org;



Member
Th3H4ck Has hacked hundreds of VB forums over the last few days, what is the exploit and are we working on a fix???


Member
Yeah I saw he joined today and used my Spam-O-Matic features to get rid of him but I would really like to know how he signed up as an Admin?

Anyway, our webmaster is working on it. Hopefully we will not lose too much information.

[Hellbent]

I might have it all cleaned up. Every time I've thought that over the last 3 days I've ended up finding more crap so I'm not going to guarantee anything yet....lol. If your anti-virus software is up to date it should detect the trojans and redirects that the hack was using. It was a nasty hack. Took a lot of sites down. We were in a particularly bad spot because we rely on our host for our day to day backups. Problem with that is they only save 32hrs of backups. What this hacker did was inject his code several weeks ago then let it sit dormant for a while until finally activating it. That meant all of the hosts backups were infected so we couldn't just roll the site back to one of them. I ended up having to remove everything from both the site and the database manually. It's going to take a little bit for Google to do it's scan and remove us from their list of infected sites so don't be surprised to see some Google warnings for a little while...especially if you use Chrome as your browser. Definitely don't disable your anti-virus software with this one. If you did disable your anti-virus over the past couple days so you could visit the site, I would recommend changing the passwords for any important accounts that you may have stored on your computer....banks, paypal, etc. and doing a full system scan with updated anti-virus software. Again...this was a pretty nasty hack...take it seriously.

[poncho]

I kept my virus software on and have not been able to get the site since Friday. Hackers really suck.

[Ratickle]

This one is a major issue. There are still sites down all over the world. They even got a major college....

[Bobcat]

And by Major College you mean the PAC 10

[Ratickle]

It's the Pac 12. Unlike the Midwestern colleges, we can count out west..........

[Coolerman]

Yeah I saw he joined today and used my Spam-O-Matic features to get rid of him but I would really like to know how he signed up as an Admin?

Wow......

[fund razor]

I might have it all cleaned up. Every time I've thought that over the last 3 days I've ended up finding more crap so I'm not going to guarantee anything yet....lol. If your anti-virus software is up to date it should detect the trojans and redirects that the hack was using. It was a nasty hack. Took a lot of sites down. We were in a particularly bad spot because we rely on our host for our day to day backups. Problem with that is they only save 32hrs of backups. What this hacker did was inject his code several weeks ago then let it sit dormant for a while until finally activating it. That meant all of the hosts backups were infected so we couldn't just roll the site back to one of them. I ended up having to remove everything from both the site and the database manually. It's going to take a little bit for Google to do it's scan and remove us from their list of infected sites so don't be surprised to see some Google warnings for a little while...especially if you use Chrome as your browser. Definitely don't disable your anti-virus software with this one. If you did disable your anti-virus over the past couple days so you could visit the site, I would recommend changing the passwords for any important accounts that you may have stored on your computer....banks, paypal, etc. and doing a full system scan with updated anti-virus software. Again...this was a pretty nasty hack...take it seriously.

Thanks for all of your work on this Jason.

[Ratickle]

Wow......

Yeah, we had a new admin too......

[poncho]

Good work getting the site back up. I don't see how its fun for these people to do this to websites. They must be major losers in real life.

[Coolerman]

Is there something wrong with making an honest living and not having to hack websites to infect others with a virus to steal their info? wtf.......

[Ratickle]

Nothing better for these civilization dropouts to do than sit around in their brown and yellow stained underwear playing games and trying to figure out how to make someone else as miserable as they are.....(While Mom makes their meals and delivers them for the past 10 years they've been out of school).

[Hellbent]

Thanks for all of your work on this Jason.

No worries. Unfortunately the hackers have more time to spend on it than I do! I have a feeling we haven't seen the last of the guys who put this one together.

[Ratickle]

There are so many sites hacked currently it's incredible. I'm getting really close to blaming IB, who not only owns oso but vbulletin plus hundreds of other sites, for the major size of the issue.