PHattiE wrote:I am considering remaking the hero6 visitor site. It has been hacked, and anyone who goes to the forums right now will get a virus.
Hero6 visitors forum hacked
Moderators: adeyke, VampD3, eriqchang, Angelus3K
Hero6 visitors forum hacked
Someone had hacked into the QFMG forums as well. Both seem to share similarites.
Both affect IE users who try to view the forums. This script downloads automatically when you access those boards using IE.
Both had forum members receiving emails claiming to be from the forums with the following message: "Please, help our forum - traffmoney.biz/dl/loadadv606", with a live link and to an exe. If you see such an email, delete it immediately.
Both forums were Invision forums, so it's most likely an Invision hack targetted at the vulnerabilties since Invision doesn't update anymore.
Both affect IE users who try to view the forums. This script downloads automatically when you access those boards using IE.
Both had forum members receiving emails claiming to be from the forums with the following message: "Please, help our forum - traffmoney.biz/dl/loadadv606", with a live link and to an exe. If you see such an email, delete it immediately.
Both forums were Invision forums, so it's most likely an Invision hack targetted at the vulnerabilties since Invision doesn't update anymore.
-
navynuke04
- Honorary AGD
- Posts: 5378
- Joined: Fri Sep 13, 2002 1:19 am
- Location: US of A
- Contact:
What is your source? If that is so and we experience another attack I'll most likely switch to phpBB. Crap but hey it works.Swift wrote:On the contrary, it appears more like an attack against all sites that used the outdated Invision forums, rather than an attack against game-making sites. Thanks for your concern. The forums will be up as soon as it gets converted.
IA, QFMG and Hero6 all used the Invision forums (free version). IA forums were attacked last month, QFMG forums were attacked two weeks ago, then Hero6 last week, then QFMG forums again last week. If it's just an attack on game making groups, then there's no reason for QFMG forums to be attacked at all, let alone twice.Jamie wrote:What is your source? If that is so and we experience another attack I'll most likely switch to phpBB. Crap but hey it works.
Plus, while googling for how the iframes hack worked, I came across other Invision forums that were also hacked during this period, and there was talk about how easy it is to hack into the 1.3.1 version. Most likely there's a security hole in the 1.3.1 Final version that allows hackers to exploit it.
Well, even so we've covered so if that is the case we shouldn't be getting hacked for that reason from now on. ;)Swift wrote:IA, QFMG and Hero6 all used the Invision forums (free version). IA forums were attacked last month, QFMG forums were attacked two weeks ago, then Hero6 last week, then QFMG forums again last week. If it's just an attack on game making groups, then there's no reason for QFMG forums to be attacked at all, let alone twice.Jamie wrote:What is your source? If that is so and we experience another attack I'll most likely switch to phpBB. Crap but hey it works.
Plus, while googling for how the iframes hack worked, I came across other Invision forums that were also hacked during this period, and there was talk about how easy it is to hack into the 1.3.1 version. Most likely there's a security hole in the 1.3.1 Final version that allows hackers to exploit it.
). Kudos for getting it back up!