on-rev hacked

Bob Sneidar bobs at twft.com
Mon Jun 4 18:30:23 CDT 2012


I would also be interested if your SQL server (not sure if you use it) was accessed. That would REALLY suck. I don't have any web sites there, so I think I am clear, so long as this was not a pervasive breach of lots of account logins. 

Bob


On Jun 4, 2012, at 4:24 PM, Andre Garzia wrote:

> Mark,
> 
> Do you have a potential idea of how the hacking occurred? Were you using
> any popular PHP FOSS there? I've seen hackings such as this happen thru
> Wordpress exploitation.
> 
> Any idea how it happened?
> 
> Cheers
> andre
> 
> On Mon, Jun 4, 2012 at 7:57 PM, Mark Wieder <mwieder at ahsoftware.net> wrote:
> 
>> It was pointed out to me over the weekend (thanks Mark!) that my on-rev
>> website
>> had been hit by a bot that did two things: replaced my .htaccess file with
>> an
>> empty (zero-length) one, and inserted a javascript pointing to "
>> thesalivan.com"
>> right after the <body> tag in all the .html and .htm files.
>> 
>> Simple enough to fix up, but annoying and consumed time I would rather have
>> spent on other pressing projects.
>> 
>> So this is just an alert to those who have sites hosted on on-rev, given
>> the
>> recent (or no-so-recent) security breach there, you might want to check
>> your web
>> pages and ensure that nothing's out of place. I hadn't noticed any
>> discrepancy,
>> apparently because one or more of my Firefox blockers was preventing the
>> script
>> from loading.
>> 
>> --
>> Mark Wieder
>> mwieder at ahsoftware.net
>> 
>> 
>> 
>> _______________________________________________
>> use-livecode mailing list
>> use-livecode at lists.runrev.com
>> Please visit this url to subscribe, unsubscribe and manage your
>> subscription preferences:
>> http://lists.runrev.com/mailman/listinfo/use-livecode
>> 
> 
> 
> 
> -- 
> http://www.andregarzia.com -- All We Do Is Code.
> http://fon.nu -- minimalist url shortening service.
> _______________________________________________
> use-livecode mailing list
> use-livecode at lists.runrev.com
> Please visit this url to subscribe, unsubscribe and manage your subscription preferences:
> http://lists.runrev.com/mailman/listinfo/use-livecode




More information about the use-livecode mailing list