Web Hosting Talk : Other Forums : Web Hosting Lounge : Annoyed with Hackers

[FaizanQ]

Hello

I am really annoyed with some stupid hackers who ruined my really big IPB forum. I had to revert back to a week's old backup which meant I had to lose 500 members and 5000 posts.

Is there anyway to shut them down?

Here's more information on the domain they left all over the forum:
http://www.domainsite.com/whois_resu...n-brothers.com

If anyone here hosts them, do you think you can shut them down? Surely hacking is illegal.

Any advice, feedback & comments etc would be appreciated.

Faizan

[adam]

Report them the to ISP they use but they will still keep doing it most likely.

What software do you use for your forum? Is it up-to-date?

[FaizanQ]

IPB. I was one update behind so that is why they got the chance to hack, but I still really think they need to be shut down.

[PixelManual]

Quote:

Originally Posted by FaizanQ

IPB. I was one update behind so that is why they got the chance to hack, but I still really think they need to be shut down.

You can report them, but odds are nothing will happen. if you have a dedicated, time to have a security audit done.

[FaizanQ]

Erm, this is the IP of the hacker and its from Islamabad, Pakistan:
202.179.137.14

I dont think they have any policy to stop those but the site itself (boon-brothers.com) is registered in Canada and the owners are from Canada too.

[adam]

You can go ahead and report then to the webhost they use as well as report the IP and all of the info to the RCMP.

[hekwu]

Do you have the latest updates for your forums? Can you change to another forum technology?

I had someone mess up one of my scripts... it was my fault since I had not downloaded the latest updates for it... oh well. Almost like leaving your door open in your house... not right, but you are asking to get robbed.

Sucks what hackers and spammers are doing to the web....

Oh, and as far as shutting them down, I doubt if that would do any good. Another set of criminals will simply jack your site again. You can't win going around trying to get people shut down... most of the the contact info is fake anyway.. or if you report they will simply move on to another host.

[Ariel74]

Quote:

Originally Posted by FaizanQ

IPB. I was one update behind so that is why they got the chance to hack, but I still really think they need to be shut down.

Did they use the bbcode exploit ?

[Amdac]

I'd report them to their host, which appears to be fastservers.com. I'm sure the content of their site alone is enough to get it shut down.

http://whois.domaintools.com/64.38.12.116

[Zafar Ahmed]

How is it possible to hack IPB?

[Ariel74]

Quote:

Originally Posted by Zafar Ahmed

How is it possible to hack IPB?

There was a SQL injection problem that was just fixed a few days ago.. security update for 2.1.6.

[diggleblop]

I run a mid sized IPB board (see link in sig) and try my best to keep up to date by visiting ipsbeyond.com

You NEED TO VISIT DAILY. Which I'm sure you know now, unfortunately. That sucks about what happened. What is your forum address?

[SlimSlyk]

Quote:

Originally Posted by azizny

Use Phpbb, its better....

Peace,

Give me 5 minutes with any phpBB install and Google and I will completely ruin it. It's so unbelievably exploitable. I have never ever seen anybody give this advice before, it's easily the most unintelligent forum advice that I have seen.

IPB is nice, but vBulletin is nicer.

[FaizanQ]

Thanks for your replies.

I went on their site (boon-brothers.com) and read how they do it. Apparently they use some "software" that gets them admin access through loop holes, but ofcourse the latest version has fixed those and I upgraded straight after the incident.