Casper Posted March 3, 2011 Report Share Posted March 3, 2011 (edited) If you're on Assfault Junkies, and you use the same password here, change your password here on Ohio Riders immediately. Their user database table has been posted publicly online.I sent Brandon a message to let him know. He's having his web guy look into it. But if you're a member on there and here, please change your password here immediately. Edited March 3, 2011 by Casper fixed, only have to change your password if they're the same on both sites Quote Link to comment Share on other sites More sharing options...
4DAIVI PAI2K5 Posted March 3, 2011 Report Share Posted March 3, 2011 Even if its different? Quote Link to comment Share on other sites More sharing options...
gixxie750 Posted March 3, 2011 Report Share Posted March 3, 2011 thanks for the heads up Ben! Wish I had a clue about this web stuff!!! Quote Link to comment Share on other sites More sharing options...
Disclaimer Posted March 3, 2011 Report Share Posted March 3, 2011 Call the cyberpolice and have them backtrace it.The consequences will never be the same. Quote Link to comment Share on other sites More sharing options...
gixxie750 Posted March 3, 2011 Report Share Posted March 3, 2011 do they tell me where the dudes live? lol Quote Link to comment Share on other sites More sharing options...
tachman Posted March 3, 2011 Report Share Posted March 3, 2011 Call the cyberpolice and have them backtrace it.The consequences will never be the same.http://www.youtube.com/watch?v=Oi3MDzCOrRo 1 Quote Link to comment Share on other sites More sharing options...
John Posted March 3, 2011 Report Share Posted March 3, 2011 Zomg hax Quote Link to comment Share on other sites More sharing options...
Casper Posted March 3, 2011 Author Report Share Posted March 3, 2011 Even if its different?I apologize. No, if they're different you don't have to worry about. Updating first post. Quote Link to comment Share on other sites More sharing options...
BornSinner Posted March 3, 2011 Report Share Posted March 3, 2011 done...and done Quote Link to comment Share on other sites More sharing options...
4DAIVI PAI2K5 Posted March 3, 2011 Report Share Posted March 3, 2011 I apologize. No, if they're different you don't have to worry about. Updating first post.K cuz mine is some random password that the site asigned me after i forgot mine last time haha. Quote Link to comment Share on other sites More sharing options...
jarvismb Posted March 3, 2011 Report Share Posted March 3, 2011 how'd this happen, and how did you find out? Quote Link to comment Share on other sites More sharing options...
Casper Posted March 3, 2011 Author Report Share Posted March 3, 2011 k cuz mine is some random password that the site asigned me after i forgot mine last time haha.lol Quote Link to comment Share on other sites More sharing options...
cmoosego Posted March 3, 2011 Report Share Posted March 3, 2011 well that just plain sucks... Quote Link to comment Share on other sites More sharing options...
Casper Posted March 3, 2011 Author Report Share Posted March 3, 2011 how'd this happen, and how did you find out?Looks like a shell was uploaded somehow. Shells give them full access to the database.I found it by a complete fluke searching on Google. I always check user registration emails to make sure they aren't obvious spam. The first thing that came up was the dump. First thing I did was shoot Brandon a message. The next thing I did was search for OR dumps. LOL Quote Link to comment Share on other sites More sharing options...
jarvismb Posted March 3, 2011 Report Share Posted March 3, 2011 wow.do you get the impression this is a directed/malicious attack on that site specifically, or just people snooping around for any viable targets? Quote Link to comment Share on other sites More sharing options...
jbot Posted March 3, 2011 Report Share Posted March 3, 2011 from one of the board members that handle the back end of it, the passwords should still be secure since they are... hashed? i dunno, the explanation made sense, but he said to change the password if it makes you feel better. i just went ahead and changed it. Quote Link to comment Share on other sites More sharing options...
millerb7 Posted March 3, 2011 Report Share Posted March 3, 2011 from one of the board members that handle the back end of it, the passwords should still be secure since they are... hashed? i dunno, the explanation made sense, but he said to change the password if it makes you feel better. i just went ahead and changed it.Right. Our PW's "should" look something like:0xC23413A8A1E7665fAAD3B435B51404EEI have access to all the back-end but haven't taken a look myself. Quote Link to comment Share on other sites More sharing options...
Casper Posted March 3, 2011 Author Report Share Posted March 3, 2011 from one of the board members that handle the back end of it, the passwords should still be secure since they are... hashed? i dunno, the explanation made sense, but he said to change the password if it makes you feel better. i just went ahead and changed it.Right. Our PW's "should" look something like:0xC23413A8A1E7665fAAD3B435B51404EEI have access to all the back-end but haven't taken a look myself.Change them. Trust me. It's just a salted MD5 hash. If you don't believe me, just Google for something like decrypt md5. If there was a safe password encryption that nobody could crack, then sites, businesses, banks, etc wouldn't get hacked. Quote Link to comment Share on other sites More sharing options...
jbot Posted March 3, 2011 Report Share Posted March 3, 2011 yeah? well, your mom is a salted MD5 hash Quote Link to comment Share on other sites More sharing options...
Casper Posted March 3, 2011 Author Report Share Posted March 3, 2011 wow.do you get the impression this is a directed/malicious attack on that site specifically, or just people snooping around for any viable targets?I'm guessing here, but if I had to bet I'd say the shell was embeded in a skin. They're using a premium skin from Skinbox. The top two likely choices are they downloaded the skin from an unsafe source (IE: Not a legit copy) and that source embed the shell in it, or it ended up in the style somehow else. These are not targeted attacks. Generally, they get the shell out to as many sites as possible. Then they can Google for a phrase in the shell, or possibly have a callhome function in the shell to locate the sites infected. Quote Link to comment Share on other sites More sharing options...
CinciBusa Posted March 3, 2011 Report Share Posted March 3, 2011 casper do you have the URL where you originally saw this? Quote Link to comment Share on other sites More sharing options...
millerb7 Posted March 3, 2011 Report Share Posted March 3, 2011 Change them. Trust me. It's just a salted MD5 hash. If you don't believe me, just Google for something like decrypt md5. If there was a safe password encryption that nobody could crack, then sites, businesses, banks, etc wouldn't get hacked.Meh. If I start randomly posting crazy stuff on here.. I SWEAR it's the hacker! Quote Link to comment Share on other sites More sharing options...
Casper Posted March 3, 2011 Author Report Share Posted March 3, 2011 casper do you have the URL where you originally saw this? Yes, but no I won't share it. Brandon has it. If he wants to share it he can. Meh. If I start randomly posting crazy stuff on here.. I SWEAR it's the hacker! And I swear I'll ban your account. Quote Link to comment Share on other sites More sharing options...
4DAIVI PAI2K5 Posted March 3, 2011 Report Share Posted March 3, 2011 loldont laugh, i always got to dig in my emails to find the one from with it in there haha Quote Link to comment Share on other sites More sharing options...
shittygsxr Posted March 3, 2011 Report Share Posted March 3, 2011 ... Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.