GSC has been hacked
retrotrut:
Oh man, that's the second Sim site that got hacked. The other day, I think it was around April last year, I went on Exnem Sims and someone had hacked it completely and deleted ALL the Community Downloads. And when I went into the forums it said "F*** You, This F***ing server is being hacked". Thats all that I remember and the sad part was that Exnem couldn't backup his site. Poor them. However I did manage to have some of the community downloads at the time, so I sent them all what I had to LyricLee.
At last your site has been saved. Exnem's site is completely ruined. :(
Johan:
Quote from: J. M. Pescado on 2010 January 16, 00:11:51
Meaning, in order for someone to use passwords as if they came from TSR, they would have to make sure to ONLY use those that matched TSR passwords. They would thus have to intentionally pass up attack on people whose passwords they had, but could not access from TSR. Additionally, how would they KNOW the passwords matched TSR unless they tried them, and thus made it apparent that this was occurring? Without the knowledge that the passwords actually DID match TSR's passwords, the attack pattern could not be matched to TSR.
Assuming all attacks were made on accounts that had the same password on TSR i can see what you mean. I don't think that is the case though?
Buggy is the only one i know for sure had the same password.
Quote from: J. M. Pescado on 2010 January 16, 00:11:51
2 known incidents are not really relatable. Not every incident of vandalism is through the same vector or related. In fact, if someone really HAD externally compromised your DB, you would be seeing a lot more damage than two isolated wipes of FA accounts.
Quote from: J. M. Pescado on 2010 January 16, 00:11:51
You say "at least 2". That is not quite a large number, especially in the absence of any other connection. There are plenty of reasons why a password could be compromised in a vacuum without the need to resort to hacking theories, particularly when the vandalism is apparently unrelated, and much of this doesn't even qualify as hacking. Cats and angry siblings can cause plenty of random deletions without any hacking at all.
It was two separate attacks where multiple accounts (i think it was 5-10) were compromised.
That was probably not a case of random vandalism, somehow the attacker either found a vulnerability or got a hold of the passwords.
Quote from: J. M. Pescado on 2010 January 16, 00:11:51
Or that the old password sheet is still alive and still held by the hacker.
Would be possible if someone got a dump of the whole member table, which couldn't have been done by Thomas.
That he would have compiled a list of selected people he wanted hacked and all the attacks we've seen came from that list sounds unlikely to me.
A complete list of all the "TSR linked" attacks could help shed some light on this, the ones i know of are Buggy, Bluesoup (petition), Scotty and Witchboy.
Did i miss anyone?
DrNerd:
Quote from: Johan on 2010 January 16, 23:14:57
A complete list of all the "TSR linked" attacks could help shed some light on this, the ones i know of are Buggy, Bluesoup (petition), Scotty and Witchboy.
Did i miss anyone?
The simsecret hacking over at LiveJournal has also been linked to Atwa/TSR, mainly because of IP similarities and the fact that the only posts that were deleted were ones with anti-TSR secrets.
J. M. Pescado:
Quote from: Johan on 2010 January 16, 23:14:57
It was two separate attacks where multiple accounts (i think it was 5-10) were compromised.
That was probably not a case of random vandalism, somehow the attacker either found a vulnerability or got a hold of the passwords.
The latter seems more likely. If a true vulnerability existed, it would not have been easy to selectively target data using an SQL or PHP vulnerability, and your attacker would have simply deleted everything. Similarly, admin-level password compromise is thus unlikely, as if someone had an admin password, they would have been able to do far more damage.
Quote from: Johan on 2010 January 16, 23:14:57
Would be possible if someone got a dump of the whole member table, which couldn't have been done by Thomas.
Is there a technical reason, other than possibly sheer size, that would have made this impossible?
Quote from: Johan on 2010 January 16, 23:14:57
That he would have compiled a list of selected people he wanted hacked and all the attacks we've seen came from that list sounds unlikely to me.
This does sound excessively laborious, but not impossible, if he selectively compiled anti-paysite activists. The more likely scenario is still whole or partial membertable dumping.
Quote from: Johan on 2010 January 16, 23:14:57
A complete list of all the "TSR linked" attacks could help shed some light on this, the ones i know of are Buggy, Bluesoup (petition), Scotty and Witchboy.
Did i miss anyone?
Of the known attacks, the Buggybooz, Shanow, and Scotty attacks are the ones known to me to have confirmed the TSR-password link. There may be others I don't recall offhand, and in none of the unconfirmed cases has this been ruled out as an possibility.
Assmitten:
Quote from: Zazazu on 2010 January 15, 17:13:22
I am a horrible liar, so much so that I haven't even attempted one since I was a new 18. However, I can lie easily and do to my parents. The 'rents think I have a degree. They have seen a copy of this degree. They know the supposed classes I took while I finished said degree. I'd argue that sometimes the easiest people to lie to are family.
So you printed out a fake degree?? Please tell me you used comic sans.
Navigation
[0] Message Index
[#] Next page
[*] Previous page