Hack Attempt on .Org

[Beskar]

Hello all,

It seems that someone got access to our webserver via some legacy software hosted on totalwar.org. This has now been locked down, and many features and functionality from the old sections of the Org are no longer accessible.

The hacker attempted to hijack and control a admin account (failed), and tried to deface sections of the site. Any alterations have been reversed and secured against.

Whilst passwords on the Org are encrypted, they may have been exposed during this time, and it is highly recommended that you change your passwords to ensure your accounts are not compromised. Similarly, if you use the same email address/username and password on other websites. Whilst this may just be a precaution as there is no way to tell, I would recommend following this advice.

We're still investigating the extent of the breach, and some functionality on the site which people may be using is disabled to ensure this cannot occur again

In the meantime, we recommend that everyone changes their passwords ASAP.

Best wishes,
Beskar

[Montmorency]

This has now been locked down, and many features and functionality from the old sections of the Org are no longer accessible.

What exactly is gone now?

[Beskar]

What exactly is gone now?

Some old random pieces of dusty equipment that should have been thrown out years ago, but kept around long past its usefulness. Something no one would probably ever use, except for that one random person.But it was the reason for the breach/attempt. In short, I don't know, and @therother is the person to ask.

[therother]

Mostly, I've deactivated a whole bunch of file uploaders from back circa 2002-2004. The hack attempt was via these old php scripts.

I've also deactivated a number of unused sites like our Legend of the Green Dragon install. I could reactivate these if there's interest.

There was an attempt to break into a dummy forum account but this was unsuccessful.

[Vincent Butler]

Makes you wonder what somebody could hope to gain by hacking .org, other than just to be malicious.

[ghostofxmaspast]

The hack attempt was via these old php scripts.

Most likely old, buggy (or just poor) PHP code.

https://en.wikipedia.org/wiki/File_i...nerability#PHP

[Stazi]

Makes you wonder what somebody could hope to gain by hacking .org, other than just to be malicious.

Your answer is in the first post:

Whilst passwords on the Org are encrypted, they may have been exposed during this time, and it is highly recommended that you change your passwords to ensure your accounts are not compromised. Similarly, if you use the same email address/username and password on other websites.

[kiowhatta]

Probably a nutter who thinks anyone with an apolitical interest in war subscribes to fascism or some other extreme ideology. Whenever people find out I'm a Germanophile and have an extensive interest in the Eastern Front of WWII, I get THAT look,

[Kadagar_AV]

Wrote stuff

Best wishes,
Beskar

What this means is basically; All your base are belong to us.


Never have the same PW at 2 places, is the sidenote.