Hacking Incident Today

[Susan]

A hacker used an unknown vulnerability to insert a iframe into the theme files for the forum, which could have caused users with unpatched systems to download and run a malicious payload. I have removed the malicious code from the site, and put several precautions in place to prevent a re-occurrence until the vulnerability they exploited can be found and patched. 

As a precaution I have also removed all custom plugins from the forum software until they can be manually updated and reinstalled sometime tomorrow. This may result in some missing functionality until then, but better safe than sorry.

All users are strongly encouraged to run anti-virus and anti-malware scans on their machines just to be safe.  If you do not have software to do so already, you can download free software programs to run the scans. AVG Antivirus and Malware Bytes are the softwares that I personally recommend. Make sure you use the update functionality to ensure that your program will detect the latest threats.

If you see anything unusual with the site please do not hesitate to notify a staff member. Any staff receiving such notification is to call me at  home immediately no matter the time of day.

[xxUltraModLadyxx]

it would be nice if people could just get a life. of course, when you're 35 years old, still living in your mothers house, and unemployed, what better to do than hack into a transgender forum?

[spacial]

Sorry, but there appears to be another problem cropped up. (I'm still using the proxy server to get round it!).



http://img259.imageshack.us/img259/8563/googlewarning.jpg

[K Style Addiction]

I got an attack site warning, i ignored and went on to Susan's just a while ago. Should i be worried?

[spacial]

I got an attack site warning, i ignored and went on to Susan's just a while ago. Should i be worried?

Since it's still appearing, I imagine, we can assume Susans is having problems.

Personally, I tend to pay attention to warnings. So I tried the proxy and no warning, presumably because the informaiton has to go through them.

In the mean time, I think Susan would give the same recommendation she gave earlier, run some malware software. She recommends and most use Malwarebytes http://shop.malwarebytes.org/lpa/342/3/7268/index_b.html?gclid=CNWlkuaNka8CFcwTfAodeQNaxQ

A Virus check would also be a good idea. Personally, I use housecall. http://housecall.trendmicro.com/uk/ But Susans seems to like AVG.

Looking good there Donna.

[King Malachite]

I was attacked with scareware a couple of days ago and wonder if this has any relation to the attack.

[Renee D]

The page style is a bit different after the warning. I ran anti malware thingy and it came up clear and no virus warnings have kicked up. Seems like there are some extra host processes running though.

[Raya]

Wow. I'd thought the site was under some kind of DDoS attack. I couldn't get to the anything but the wiki all week!

Still, I'm so glad you're back. So many great sites just drop into the ether with no warning.

Now, off to burn the IRC room location into memory...

[Susan]

The warning can take a day or two to be reviewed. The site is clean as of this time.

[spacial]

I can only add another thank you to the list.

You're the best Susan.

[Beth Andrea]

I can only add another thank you to the list.

You're the best Susan.

*echo*

*hugs*, back slaps, and WOOTS! to Susan and her team!!

[Stephanie Stephens]

*echo*

*hugs*, back slaps, and WOOTS! to Susan and her team!!

[bballshorty]

I know this is really late, but I can't access my past topics through my profile anymore.

[Cindy]

I know this is really late, but I can't access my past topics through my profile anymore.

Susan has placed some restrictions on the functions so that she can handle the server space problems.

[Jamie D]

At approximately 12: 20 PM, Pacific time, this afternoon, the system hung up on me.

When I went to log back in, I got a warning screen from Mozilla Firefox, for "Web Forgery" (Phishing).  I bypassed the warning screen and got back in just now (12:35 PM).

FYI

[spacial]

At approximately 12: 20 PM, Pacific time, this afternoon, the system hung up on me.

When I went to log back in, I got a warning screen from Mozilla Firefox, for "Web Forgery" (Phishing).  I bypassed the warning screen and got back in just now (12:35 PM).

FYI

'Dem 'ackers do seem a determined lot, don't they!

I sit back and imagine a bunch of pasty faced, moralists, against our Susan.

[justmeinoz]

I installed AVG on my computer several years ago, on the recommendation of a friend running an IT business, and have had good results to date.  I will be changing to a Linux system shortly which should help too.

Karen.

[sophia001]

Wow. I'd thought the site was under some kind of DDoS attack. I couldn't get to the anything but the wiki all week!

Still, I'm so glad you're back. So many great sites just drop into the ether with no warning.

Now, off to burn the IRC room location into memory...

Same here, Susans has been running very slowly over the past few days.

Hope it's all sorted soon - if you could use a hand let me know Susan, I'm a Software Engineer & handle my companies Sysopss in my day job

x

[sophia001]

I installed AVG on my computer several years ago, on the recommendation of a friend running an IT business, and have had good results to date.  I will be changing to a Linux system shortly which should help too.

Karen.

Hey Karen,

If you go to Ubuntu which most people new to Linux do, I'd recommend installing Gnome-Shell instead of the default Unity.

It's a much nicer (and easier IMO) interface to use. Ubuntu have made a few... interesting... decisions over the past few releases, but it's still a great distro to start on

x