Security Threat on another Forum

Sjdickso

The GF has just been on another forum and got this

HACKED
YOUR SYSTEM OWNED BY
VEZiR.04
MeTaLLiCA /THE.CAYLAK/ LORDWORDEM /DeaD
[vezir.04@linuxmail.org](mailto:vezir.04@linuxmail.org)

I have googled it looks like a few forums have been taken down by this. 2 things.

Any chance i have now got some odd spyware on my system done x2 full scans and all clear now apart the usual tracking cookie.

I presume the reason they have been hacked is due to using some open source software template and not tweaking the secuirty notsure.gif

Any adivce (Matt ?)

Matt

Luckily I'm booted in Linux at the minute at work, so can't get spyware 😃

Just had a look on some of those hacked sites (according to Google search) and they appear to be running the following Forum software:

Snitz Forums 2000

and another example is running PostNuke. Every now and again, security exploits are found, and they are run by script kiddies who exploit this breach.

Sometimes the pages can be comprimised by the Control Panel running on the server also having an exploit. An example I've seen on another site I' help run is where there is a Java script being run from the index page, because the control panel CPANEL was out of date, and a script was able to be run.

I wouldn't worry tbh about spyware mate, the examples I've just seen of this is it's just a scrip kiddie running a scrip, and defacing the pages, nothing to worry about

Sjdickso

Thanks for that Matt.