|
|
Joined:
August 2003
Posts: 4619
Location: SoCal | This morning I see that we had a 2nd successful hack of the OFC. And, my software showed spyware after visiting the OFC site. Possibly coincidence but OFC was the only site I visited after logging on and I had run the spyware software last night before logging off.
I know very little of hosting services (background primarily in Tempest) but both hacks occured after switching hosts.
???????????????????????? |
|
| |
|
Joined:
April 2003
Posts: 2503
Location: Fayetteville, NC | I saw it Too Tony! Emailed Al first then when I checked back about a half hour later it was back to normal. It's really upsetting that there are people in the universe that have so much time on their hands that all they can do is hack into other peoples Sites. It's really inconsiderate.
I'm just glad it didn't last as long as it could have. |
|
| |
|
Joined:
December 2001
Posts: 7237
Location: The Great Pacific Northwest | Yep, Al called me and I reverted it back and reported it to the host. There is obviously still a hole they didn't plug. None of the other sites that I have on the same host were effected so I assume there is a security hole on one server thats being exploited. Unless you clicked on the page or links there was nothing in it that would trigger your spyware.
I am not overly concerned at this point. Microsoft just released an upgrade, told everyone they must install it, and within minutes published fixes for it. I'm sure there are more patches to come. This hole is very specific, allowing one to overwrite one page of a specific name. I'm glad I don't work at Microsoft at this point. |
|
| |
|
Joined:
August 2003
Posts: 4619
Location: SoCal | Miles,
I am sure all of us appreciate the efforts in keeping this monster going... :) :) :) |
|
| |
|
Joined:
April 2003
Posts: 2503
Location: Fayetteville, NC | AMEN!!! :) |
|
| |
|
Joined:
December 2001
Posts: 7237
Location: The Great Pacific Northwest | Whew... we are back. :) |
|
| |
|
Joined:
May 2004
Posts: 2850
Location: Midland, MI | Originally posted by Tony Calman:
This morning I see that we had a 2nd successful hack of the OFC. And, my software showed spyware after visiting the OFC site. Possibly coincidence but OFC was the only site I visited after logging on and I had run the spyware software last night before logging off.
I know very little of hosting services (background primarily in Tempest) but both hacks occured after switching hosts.
????????????????????????
Tony-
I don't see anything when I vist OFC that would lead me to believe it's been compromised in that way. FWIW, there are various [ad-,spy-]ware programs that survive even SpyBot and Ad-Aware and will respawn on reboot. BlazeFind is one that I've been battling on my wife's laptop for the last three weeks. There are a couple that you think you've gotten rid of, but you really can't without going into safe-mode and wiping them out (WindUpdate springs to mind...that little fscker has me serious annoyed, if I ever come across the programmers for that...).
Now, let's talk about TEMPEST. Will lining the cieling, walls and floor of my data center with copper wire, say 14ga stranded, continuous run (only two ends!) with about 1' spacing be sufficient? :D |
|
| |
|
Joined:
February 2002
Posts: 613
Location: Zion, Illinois | Don't get me started with the spyware stuff. My son install something on his computer. Unknown to him it installed something else which installed something else, etc. I spent Friday morning trying to fix it. Spybot found over 300 entries. It was unable to fix 48 of them without a reboot. Even after a reboot they were still there. Every minute 3 or 4 popup windows would, well pop up. I finally gave up reformatted his harddrive and reinstalled Windows. What a pain. I warned him not to install anything from the internet; he didn't listen and he paid the price. |
|
| |
|
Joined:
May 2004
Posts: 2850
Location: Midland, MI | Brad-
I'll wager $5 it was Kazaa, Morpheus, or the like. Seems most p2p programs are convenient vehicles for spy/adware. In my wife's case, she didn't install anything. I've narrowed it down to a couple of the sites she frequents (parenthood.com being one of them, if you can believe that). I've been doing high-end IT consulting for far too long to let something as piddly as spyware beat me...I *will* end this infestation on her laptop. Even if it means covering it in a blanket of thermite and setting it off. :mad: |
|
| |
|
Joined:
November 2002
Posts: 1300
Location: Madison, Wisconsin | My wife gets her news from The New York Times site and Solon.com. Both are filthy with pop-ups. She even paid for a subscription to Salon thinking it would get rid of the crap but seems it got worse. I sure am glad I have my own computer. I've managed to stay pretty clean using Norton Internet Security with the Ad Blocking turned on. |
|
| |
|
Joined:
December 2001
Posts: 7237
Location: The Great Pacific Northwest | I'm rooting for ya cruster. Checkout webroot's Spy Sweeper. So far of all the popular programs I have tried this is the most powerful and successful and it updates often. If you check the Announcements section I have an article I did on my Spyware woes. I personally think Spyware is much worse than virus software, eventhough they are a form of virus. I virus usually just breaks a computer or program. You see it, clear it, done in most cases. This spyware stuff is doing everything from the mimimal good stuff it was intended to like help you find books similar to the last 10 you ordered, so downright devious such as sending you login and password to your bank account to thugs in Argentina. And mostly, you will have no clue what's happening until long after tha damamge is done, or, in fact, you may never know. |
|
| |
2nd loss of service
