http://www.freepgs.com/ephemeral/bma/
Judging by the tagline given, this site was recently hacked. I'm not the admin there, but I am a member, and I am hoping something can be done about this, and soon.
Here's the tagline, if it helps. 'Fatal Error 2006 - bY: owz'
Please respond ASAP.
I have the same problem with my site, mate.
Seems this guy has been "nice" enough to only crash the "index.html" file, for now. But I would really like to see something done about this.
QuoteBut I would really like to see something done about this.
This is why all scripting languages (except PHP) are now disabled for everyone.
Yep, got hit here also. Hit all my index.php files in all folders... fun-fun
I have to wonder just how many sites got hit by this script kiddy, and if there's any way to track him/her down. It takes a sad, sad individual to go after harmless forums. I'd like to tear the person responsible a new one... but that's just my fists talking. Wonder how long it'll take the authorities to track them down, if they can...
Forums were not the only sites affected. My two accounts got hit: one had almost nothing on it and the other ran WordPress (blog).
*nods to Webzone* Sorry for leaving out the other sites, just using the one in my most recent experience for reference. People like this make me question what little faith I had left in humanity.
Well this sucks! Any clue how to fix this?
Keep backups? Sh** happens, as we all know.
QuotePeople like this make me question what little faith I had left in humanity.
There will always be people to destroy other's work. That's sad, but unfortunately true.
Interesting: the hacked accounts here were just another target set by a group of a "defacement team". A Google search reveals tons of affected websites (http://www.google.com/search?q=%22fatal+error%22+owz). A page in Google's cache (http://www.google.com/search?q=cache:www.kidscatcharainbow.org/default.asp%3Fmonth%3D5%26year%3D2006) even provides their email addresses.
QuoteWell this sucks! Any clue how to fix this?
Re-upload your index.php or index.htm file from your last backup.
Thanks for the speedy reply! It worked. Have a wonderful day.
i also know of someone's website hosted here that this has happened to
Looks like this bunch of morons have been busy 26196 defacements listed on zone-h.org
http://zone-h.org/defacements/filter/filter_defacer=Fatal%20Error
Quote from: webzone on April 03, 2006, 06:49:25 AM
QuoteBut I would really like to see something done about this.
This is why all scripting languages (except PHP) are now disabled for everyone.
And even with PHP enabled this still happened... the question is is there anyone on freepgs that didn't get affected? & how did these tossers carry out the attack? Is it a vulnerability on our individual sites? or is it a freepgs issue? Where was the point of entry?
One of my accounts wasn't affected. The site itself was only HTML.
Another two "sites" (new sites i'm playing with) were not effected also and both used PHP and MYSQL on a seperate account. Not got any "Ownz" stuff here as far as i'm aware.
The same situation here!!
To the administrator of freepgs.com:
please check the logs on a server and if you would find a way how could it happened..
So, what now...all of the users of freepgs.com should be aware or what to do?! ehh
both of my websites are hacked. both are using php (mambo actually)...
It's not just Freepgs, it's all over the net.
The prick gained access via a perl script, or member services.
I'm taking down memserv until I can inspect all my script for security holes.
We can be luck this time it was only the index.php files, I don't think .html was effected by this attack.
Also, Memserv "Which is on the freepgs.com platform" was not effected, strange right.
index.html was effected by this attack
Actually gordon, it doesn't seem to be just .php or just .html or all of either of them. I have some index.php files that are fine, some index.html files that are fine, and some of both that were destroyed.
And to all who were hacked, and anyone else, KEEP BACKUPS. It's a 5 minute fix if you have a backup.
Indeed, I did lose one file, but... I do have a backup from yesterday, I was in the prossess of updating it..
Quote from: gordon on April 03, 2006, 07:10:15 PM
Indeed, I did lose one file, but... I do have a backup from yesterday, I was in the prossess of updating it..
Do you update on the FreePgs server?
I always update locally on my hard drive (I have XAMPP installed so I can process PHP), and then upload to FreePgs when I'm done making changes.
The FreePgs.com files on memserv where not effected by the attack!
Topic Locked.
Subject now located here: http://system.freepgs.com/smf/index.php?topic=1018.0