Another site hacked...

Discussion in 'other security issues & news' started by 19monty64, Nov 9, 2007.

Thread Status:
Not open for further replies.
  1. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
  2. innerpeace

    innerpeace Registered Member

    Joined:
    Jan 15, 2007
    Posts:
    2,095
    Location:
    Mountaineer Country
    From the link 19monty64 provided:
    This is the second time this year that this has happened. https://www.wilderssecurity.com/showthread.php?t=183634&highlight=avast hacked
    It's good to see that those with AV's or those using an alternative browser were safe.

    edit: added link
     
    Last edited: Nov 9, 2007
  3. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
  4. gkweb

    gkweb Expert Firewall Tester

    Joined:
    Aug 29, 2003
    Posts:
    1,932
    Location:
    FRANCE, Rouen (76)
    Hello,

    A very good example that practising safe hex/having safe surfing habits, does not prevent you to be attacked by the "trusted" websites and forum you visit. You still need protection, even behind an hardware firewall.

    A good reminder that nothing can be trusted as soon as you are connected, and that running "naked" (security wise) computers is not advisable. Also I'm glad to see that Firefox were not affected.

    Regards,
    gkweb.
     
  5. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
    There was also a failed attempt to hack F-Prot's site recently, so safe-surfing provides no real security. A lot of visitors to security vendors and support forums may have limited or weakened security in the first place, due to the fact that their present security may be lacking, missing or already infected. It's good that the alternate browsers are safe......FOR NOW!
     
  6. vlk

    vlk AV Expert

    Joined:
    Dec 26, 2002
    Posts:
    618
    Not true. The article must be refering to the original incident. I don't know why they issued it with an almost 3 months delay...
     
  7. acr1965

    acr1965 Registered Member

    Joined:
    Oct 12, 2006
    Posts:
    4,954
    Does anyone know if IE7 running in protected mode under Vista would have been exploited?
    thanks
     
  8. innerpeace

    innerpeace Registered Member

    Joined:
    Jan 15, 2007
    Posts:
    2,095
    Location:
    Mountaineer Country
    I was sorta wondering if they were referring to the old incident too. The article was very vague with no dates. I should have known better. Thanks for the update.
     
  9. LUSHER

    LUSHER Registered Member

    Joined:
    Feb 28, 2007
    Posts:
    440
    They quoted me! So it must be the old incident.
     
  10. Long View

    Long View Registered Member

    Joined:
    Apr 30, 2004
    Posts:
    2,295
    Location:
    Cromwell Country
    Does anyone happen to know what the infection would have done ? and whether
    it would have survived a re-boot using deepfreeze or returnil ?
     
  11. SwordOfSecurity

    SwordOfSecurity Registered Member

    Joined:
    Dec 23, 2005
    Posts:
    108
    Location:
    Canada
    I find this a bit shocking, as recently I've been on the avast forums for quite some time recently (including the times listed) but found no warning whatsoever in terms of a viral threat or symptoms of one (could be the fact that I use FireFox with NoScript on). I'll do a few scans just to confirm that I wasn't infected, although I still am amazed that this is not the first time Alwil has been hacked.

    No doubt this will cause some unrest, but I do hope that Alwil will try and step up in terms of its security measures with its other features as it is quite disheartening to find this out (safe-surfing has always been a plus for me, and suddenly finding one of those "safe sites" hacked definitely got me more aware). I suppose others should take note of this too as you never know what could happen now in a world full of hackers, malware, and the like. :doubt:
     
  12. vlk

    vlk AV Expert

    Joined:
    Dec 26, 2002
    Posts:
    618
    What?
    Have you seen the above conversation?

    It happened only once, in August. That's it.
     
  13. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
    Yes, I was the one responsible for the double-posting. Sorry for the confusion. Point is though, that the frequency and variety of attacks on security and support forums seems to be on the rise, so that it seems safe-surfing may not be a matter of "common sense" but rather "dumb luck". Just mt 2c...
     
  14. clambermatic

    clambermatic Registered Member

    Joined:
    Oct 10, 2007
    Posts:
    216
    :blink: ...hmm.

    There must be something so attractive to those 'blackhats' that they've targetted Avast's forum. Could we here and others' be hacked soon?? :ouch:
     
  15. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
    I would be surprised to see Wilders hacked. The center of focus seems to be sites that analyze HijackThis-logs, as visitors are more likely to be vulnerable, and vendors sites, whereas visitors may be lacking in security since they are at a site that distributes security-software.
     
  16. LoneWolf

    LoneWolf Registered Member

    Joined:
    Jan 2, 2006
    Posts:
    3,408

    Indeed , it was only one time.
    At the time LinkScanner Pro stopped this for me.


    I would not be suprised at all. Unless Wilders has some way of preventing this from happining. They seem to be targeting security forums. (Castle Cops forum, Avast forum) I believe CC was a dos or ddos attack thou. Not sure.
    But my point is it is security forums that seem to get attacked recently and Wilders is a security forum.
     
    Last edited: Nov 14, 2007
  17. Perman

    Perman Registered Member

    Joined:
    Nov 23, 2005
    Posts:
    2,160
    Hi, folks:

    Hack attempts on Wilders ? I would not be surprised, and perhaps in high numbers. Security is THE trademark of Wilders. I can not image the magnitude of tidal wave created by failure of Wilders' part if there were one. I have a full faith in Wilders. :)
     
  18. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
    I'm not saying Wilders or it's members are immune, but would-be attackers are going to want to get the most "bang-for-their-buck." Their efforts would be more fruitful if aimed at a help-forum or vendors-site whose visitors are possibly lacking in security for various reasons. No one has ever accused Wilders-members of lacking in that department. Even launching a DOS-attack at a forum (CC) that openly publicizes the names of "rogue anti-malwares" would achieve more. I just can't see us being a target of anyone. (other than people that have been banned and are still lurking) :rolleyes: :eek: :shifty:
     
  19. LUSHER

    LUSHER Registered Member

    Joined:
    Feb 28, 2007
    Posts:
    440
    In the case discussed "Dumb luck" of being fully patched helps too you know.
     
  20. LUSHER

    LUSHER Registered Member

    Joined:
    Feb 28, 2007
    Posts:
    440
    There was a guy a few months ago? who ran some vulnerability scanners on the servers here and found some things and wanted to discuss them. Obviously he got no discussion.

    Wilders might be a security forum, but it's not that kind of security forum unless we are talking about HIPS to protect web servers.
     
  21. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
    I thought it was the web-shields that thwarted that attacko_O As far "being fully patched" goes, who needs'em if you've got RIPSo_O
     
  22. LUSHER

    LUSHER Registered Member

    Joined:
    Feb 28, 2007
    Posts:
    440
    Yes and no.

    That's the dumbest thing i ever heard.
     
  23. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
    You've obviously never heard about RIPS then...
     
  24. deanmartin

    deanmartin Registered Member

    Joined:
    Sep 6, 2007
    Posts:
    231
    Location:
    USA/KY
  25. 19monty64

    19monty64 Registered Member

    Joined:
    Apr 10, 2006
    Posts:
    1,302
    Location:
    Nunya, BZ
    Good one...ROFLMAO...but that's not the RIPS I was talking about dean. :eek:
     
Loading...
Thread Status:
Not open for further replies.