Wtf?

[Gaf The Horse With Tears]

Another thing.. The mods should really change thier passwords NOW.

See.. an easy way for him to do this is to figure out who top mods are... then get thier ip address... then monitor that ip address... when it goes to DGN.. capture the IP packet and extract the username and password...

[n0Mad]

Gaf, you seem to know an awful lot about this. *eyes him suspiciously*

[Homicidalheathen]

I looked the guy up yesturday. I can't remember the name, I googled it. Mauhaunphung or some I think tiawaneese dude and he came up on TONS of hacker sites. I suppose if it is the actual person....they could have been hired. There was a pic of him in one site, yah he was a young oriental guy.....doubt it was his real pic....who knows. Could have been an american because there are translation sites for vocabulary.....there days you can pose as anyone......just steel a pic off the web, post in another launguage......make a fake profile.

[Gaf The Horse With Tears]

That I do, but I wear a White hat. Also, people pay me to think about this kind of thing.

[torn asunder]

by no means am i any kind of intelligent when it comes to this stuff, but it appeared to be a simple redirect, based on the first few parts of the address - i found/got access to the lofi version, and was reading the latest posts, so i don't think we got hacked, so much as hijacked... gaf, any input/thoughts on that? i really need some education about this kind of thing...

[xBrutalBeautyx]

Would a system restore help? I can wipe my comp.....I just need to know if it will do any good...... :erm

[Gaf The Horse With Tears]

No, dont bother. if you clicked the link... start checking for trojan viruses, spyware.. and god forbid... root kits.. not that you can really detect a root kit unless you know what your looking for.

[Destroit]

So hold on...you only got something installed though when you CLICKED the link right? Not just by going to that page that said "hacked by so and so"? I hope anyway. Any answers on that?

[Gaf The Horse With Tears]

Could have been a redirect.. but still.. something would have to have been put on this site to do the redirect... which means hacking in or logging in. Otherwise he would have had to hack the DNS servers.. and I somehow doubt that happened.

Were the files for DGN still there or did you have to do a restore to all the data? Was just the main index altered? Do you still have it if so?

I would really need to know what was done to restore the site first.. then.. if anyfiles had changed.. I would need to see them.

Hell, there may even be a security hole/holes in the BBCode that he knows how to use. There I would not be able to help.

Any chance you have a log of active users for about the time this started? I am willing to bet there is a admin level login if you do.

[Gaf The Horse With Tears]

Well.. to be honest... i don't know. I can only make an educated guesse. See, I'm on a 14.4 dial up connection right now. That page took only a second to load. That tells me that either it did not install anything or it detected my connection speed and choose to ignore it based on that information.

I didn;t do any real detective work on the link though.. no offense but, noone is paying me. I saw no need to trace it given that all my skills tell me that it didn't do anything to my pc. I'm not tracing a hacker with my home pc unless someone has already signed the check.

[torn asunder]

you're getting a pm, gaf!

[Destroit]

Yeah really, I was on a dial-up at the time that I went to the messageboard to post, and I was literally stunned at first, like I didn't know what happened, but the webpage that had the hacker's name on it literally took a second to load so that would make sense as to how there probably wasn't anything attached to the actual redirect page itself, but for anyone who clicked that link I wonder what it's doing to their computer. I saw it and for a split second was going to click it and thought "wait the fuck...I'm not stupid, I know what this shit is" especially because the retard who put it there had shitty grammar and it said "click to here" which told me it was some idiot hacker, probably overseas, and most likely there was something malicious attached to that link.

[xBrutalBeautyx]

I didn't click the link.

[c0pper]

Yay! I was smart and used my retard password!

[mauraway]

Ok, so.... I wasn't logged in when it happened, and as far as I know I don't have my preferences set to remember my name/password, since i use various computers.

But I did get the email message that was faked from Troy's account. I didn't click the link. I did check the dgn website, to see what was up, since something seemed fishy. I didn't click the link that was on the website either.

So does the guy have my password? Obviously he has my email address. If so, looks like I'm gonna do a lot of password changing as soon as I get off work...

mauraway

[Homicidalheathen]

I changed all of my passwords all over the internet which I usually do on Friday anyway.

[Klaus]

I'm not to incredibly worried, i use my username for this site only lately and my password is different for Mail, Myspace and almost every other site, unless he wants to hack my free dating site...? lol

[Der Nister]

If your browser remembers your login and just logs you in when you come to DGn.. then it has set a cookie. That cookie sends your username and password to the site when you come to DGN and then it logs you in automatically...

If that guy was any good at what he does, and he seems to be, his scripts would capture you username and password... along with your IP address...

What else do you use this username and passowrd for?

Good point.

First thing I did was change my email password to make sure.

Other than that - my other passwords have nothing to do with each other.

[DeadBurgerKing (10)]

Well, to be honest I don't care enough about the other things I use my email addy for to want to do anything...

I mean, if this guy is pathetic enough to want to hack anything of mine, I have all my html programing saved on my comp...so I just do a simple copy and past.

For example, IF he some how got into my myspace, I'll just start over again..not a big deal...