GSC has been hacked
Johan:
I have searched for that IP in our login log at TSR and came up empty.
It's interesting that both accounts were hacked by what seems to be the same person, this could make it a little easier to figure out if you could find the lowest common denominator.
It's probably not smart to list all sites where you might have used those passwords in public before you have changed them on those sites (if any) but that could give a lead.
To carefully examine the webserver logs for around the time of the attacks could also give something.
If you're using webmail you might want to consider changing the password and see if you can list the logins to it.
Johan:
Quote from: Zazazu on 2010 January 11, 17:57:02
Johan, if there's anyone at TSR I'd believe not to have destructive motives, it's you. That's not saying much. I think you've chosen to pull the wool over your eyes. You need to have an in-depth talk with your brother. If you really want to find out who in your organization might be orchestrating these attacks, you need to start with the person who provided Thomas with the hacked lists of names and emails from the epetition.
References:
http://tsr.mustbedestroyed.org/?p=858
http://www.petitiononline.com/mod_perl/signed.cgi?EANOTOK1
I have talked to my brother. I know him far better than anyone else here (or anywhere else for that matter) and just because i choose to believe him based on what i know doesn't mean i'm pulling wool over my eyes.
Thomas has not received any hacked petition list, that was probably just another stunt by Coconut. I actually think she said Thomas gave it to Atwa, have she changed the story now?
J. M. Pescado:
I am not willing to condemn someone merely for "Receiving Dox", which I do not believe qualifies as an atrocity in and of itself, and there is no evidence that this list was ever distributed anywhere, based on its relative worthlessness on a strategic level. On the other hand, while you may be entirely willing to vouch for your own brother, I highly doubt you are willing to vouch for the character of Atwa, who is, even by TSR standards, slimy, underhanded, and untrustworthy.
Conversely, while I'm sure you don't care for Coconut at all, I know that Coconut simply does not have the technical ability, the opportunity, or the access, needed to acquire this particular list ex-nihilo. Someone from TSR enabled this list to be acquired, even if nothing was done about it, and TSR was very quick to deny responsibility for anything involving said list even before the fingers had been pointed. And the fact remains, you DO have a rogue operator and he IS still at large.
Johan:
Quote from: J. M. Pescado on 2010 January 11, 18:19:41
I am not willing to condemn someone merely for "Receiving Dox", which I do not believe qualifies as an atrocity in and of itself, and there is no evidence that this list was ever distributed anywhere, based on its relative worthlessness on a strategic level. On the other hand, while you may be entirely willing to vouch for your own brother, I highly doubt you are willing to vouch for the character of Atwa, who is, even by TSR standards, slimy, underhanded, and untrustworthy.
Conversely, while I'm sure you don't care for Coconut at all, I know that Coconut simply does not have the technical ability, the opportunity, or the access, needed to acquire this particular list ex-nihilo. Someone from TSR enabled this list to be acquired, even if nothing was done about it, and TSR was very quick to deny responsibility for anything involving said list even before the fingers had been pointed. And the fact remains, you DO have a rogue operator and he IS still at large.
You're correct in that i'm not willing to vouch for Atwa, i barely know her. What she does or doesn't do is completely on her own.
I haven't seen anything at all that supports the theory that someone from TSR enabled the list to be acquired.
You sound very certain, do you know something about it that it don't?
Given the purpose of the petition i would imagine someone from TSR would be the last person to get access to it.
I believe it was established that the password was not from TSR in this case to?
You're wrong about when we denied responsibility, that was done after Coconut had accused us of it, a couple of days after if i remember correctly.
You're probably right about Coconut not having the technical assets to get access to the petition by some kind of hack though.
Would it be very unlikely that someone just gave it to her? She could at least put it to some use.
You seem to be quite sure about the rouge TSR operator and while i won't completely disregard that possibility there is reason to look elsewhere to. Especially considering what was found when me and Delphy investigated the Buggybooz incident, there was a very distinct trail leading elsewhere.
Either way i would certainly want to know based on things that can be verified ant not just theories.
It should be possible to find out if an email also used on TSR that has the same/similar password could have been used to recover a password for example.
In that case it might be possible to get a list of previous logins to see from what IP they came (at least if it's webmail).
Witchboy:
Quote from: Inge on 2010 January 11, 17:13:52
Quote from: Scotty on 2010 January 11, 16:50:24
That ip was associated with Witchy's account at the time of the hacking.
What you are saying is that someone from that IP was using Witchy's account? And was someone from that IP using your account at the time you were hacked? Was that IP associated with any other account on either of your sites, ever?
It's lucky you were both taking a backup at the very moment your sites were being hacked, or you would never have known which IP was logged into your account at the time, seeing as they deleted the whole lot. One thing I am still confused about though is where did they make the name change, seeing as all the data (presumably including the text that holds the name of your site) was deleted?
I had no idea about SV being hacked into until yesterday when i tried to log in over there. I contacted Nei via MSN. She checked SV for me & found the info i posted earlier. I immediately told Scotty. SV is not mine or Scottys site. Destin owns SV, btw which will be gone after this month. Destin is no where to be found & Nei has limited access. The hacking into SV was done via my account as Nei stated in my earlier post. No one on SV or GSC was taking backups of anything during the hackings.
I am a creator and moderator on both SV & GSC. Scotty is Admin on GSC & just a regular member on SV. The ip used to attack GSC is the same ip that went in on SV & changed all my info & soft deleted my creations.
As for the motive of both sites being hit. I am pro pirate/file share friendly. Scotty and GSC pro pirate/file share friendly. SV pro pirate/file share friendly. Plus the TWAT has had it in for me ever since she busted me on Sims File Vault for file sharing.
Navigation
[0] Message Index
[#] Next page
[*] Previous page