| View previous topic :: View next topic |
| Author |
Message |
Griff Grumbein
Moderator
Joined: 19 Feb 2007
Posts: 337
Location: Off-Grid
|
 Posted: Tue Feb 05, 2008 12:06 am Post subject: WEBMASTER ALERT! |
 |
|
WEBMASTER ALERT!:
One of my sights was hacked multiple times by Victor Gurubel. I have reported him to abuse@hostmonster.com (his hosting company), but I thought I'd post a notice in all the forums I have/had linked that sight on, as I'm not sure which one he started from. You can get additional info on him here:
whois.domaintools.com/gurubel.com
Check you logs & stats for entries related to the following IP and urls:
68.103.173.143
gurubel.com
gurubel.com/main.htm (which showed some of what he stole. He has since taken it down, but not before I was able to document it all.)
gurubel.crearphpnuke.com/includes/tiny_mce//blank.htm
@ Victor: Sorry you didn't want to settle this amiably so as promised, I'm letting the world know about you. |
|
| Back to top |
|
 |
Jim Hutchinson
Moderator
Joined: 17 Jan 2006
Posts: 409
Location: Iowa, USA
|
| Posted: Fri Feb 08, 2008 5:41 pm Post subject: Re: WEBMASTER ALERT! |
|
|
| GriffG wrote: | | @ Victor: Sorry you didn't want to settle this amiably so as promised, I'm letting the world know about you. |
Thanks for the info Griff, but remember, never apologize to a hacker for anything. They come in to do you harm and you apologize for exposing them? You are far too kind.
[Short story]
A client was having issues with their server so I logged in and saw someone else also logged in. I sent them a message asking who they were. The response was, "I am God".
I knew right then that we were in trouble. I could see some of the IRC chat bot files he had already installed. I asked what he was doing and what he wanted. He wanted money and warned that if we did not pay, all the files on the server would be wiped out.
I contacted my client and explained the situation. I warned them not to pay because he would wipe out the files anyway. They thought differently however, never having dealt with hackers.
So I transferred funds to him using the method he demanded. The very second I told him the funds were transferred, I was left with a blinking cursor. Period. All files were wiped out and he was gone.
[/end story]
The only time a hacker can be useful is when the skills are used to help people protect their computers from others hacking in.
If your apology would be seen by that hacker or others, it would be construed as a weakness, leaving you open to further attacks not only from him, but from others too. Always stand your ground.
Jim Hutchinson |
|
| Back to top |
|
|
Griff Grumbein
Moderator
Joined: 19 Feb 2007
Posts: 337
Location: Off-Grid
|
| Posted: Fri Feb 08, 2008 8:35 pm Post subject: |
|
|
Thanks for you post, Jim,
I understand what you mean completely however, I simply believe that one should have the chance to consider what they have done and make it right, which is why I emailed him, waited a few days, then posted what I did.
In my experience, it has proven to provide more positive results than negative. YMMV.
p.s. also add gurubel.com/videos/Video.htm and IP 71.52.245.208 to your watch list. |
|
| Back to top |
|
|
Griff Grumbein
Moderator
Joined: 19 Feb 2007
Posts: 337
Location: Off-Grid
|
| Posted: Sun Feb 10, 2008 6:57 am Post subject: |
|
|
UPDATE!: IP 71.52.245.208 has been cleared of any wrongdoing and may be removed from anyone's watchlists!
While I have happily (finally) found my security hole and plugged it, Victor has given up on me and stolen someone else's template now. I hope they can find their leak quickly.
Two lessons learned here:
1. I learned more about site security.  ,
2. He learned how to be a better hacker.  |
|
| Back to top |
|
|
pops
Joined: 27 Nov 2005
Posts: 42
Location: Guam
|
| Posted: Mon Feb 11, 2008 11:20 pm Post subject: |
|
|
I'm reading this with interest, mainly because I don't know anything about protecting my site. I don't think anyone would want to steal it because it's not really that profitable yet, but still....
Is there a website, or a course maybe, that could teach me how to protect myself?
Thanks in advance. |
|
| Back to top |
|
|
Griff Grumbein
Moderator
Joined: 19 Feb 2007
Posts: 337
Location: Off-Grid
|
| Posted: Tue Feb 12, 2008 1:37 am Post subject: |
|
|
Hi Cliff!
Hackers will take anything that will further their interests. Be it templates, links, passwords and administrator info or bandwidth, they will take it and use it for whatever it's worth.
Whatever type of site you are using, you should make sure you have the latest updates, patches and fixes for your programs, and any extensions or plug-ins you are using with those programs.
Reputable application providers will have a page or site dedicated to staying current with their latest updates. You can usually find a link on the page you downloaded the program, etc. from.
Start there, many will reference their own forums which are a tremendous source of information for their specific applications and should DEFINITELY be perused. Who better to know the inherent strengths and weaknesses with applications than those using and discussing them.
Meanwhile, don't hesitate to post more questions here if you have them. If you find answers to them, document the links for your own future reference, and for those who may follow behind that could benefit from them. 
Thanks!
Griff |
|
| Back to top |
|
|
pops
Joined: 27 Nov 2005
Posts: 42
Location: Guam
|
| Posted: Wed Feb 13, 2008 12:28 am Post subject: |
|
|
Thanks again, Griff.
You've been a real help to me lately. |
|
| Back to top |
|
|
Griff Grumbein
Moderator
Joined: 19 Feb 2007
Posts: 337
Location: Off-Grid
|
| Posted: Wed Feb 13, 2008 1:50 am Post subject: |
|
|
| Always my pleasure, Cliff! Glad if I can help. |
|
| Back to top |
|
|
|
