MiceChat hacked!
 

Yea, I'm pissed. MC got hacked just a few minutes ago. The hackers did 3 weird things:

1. After looking at it, they only killed the User database. I had a feeling something was weird when it logged me off.
2. Then the Backup folder was deleted, and my most recent local backup was from a month ago, so all of those members that registered in the last 15 days is lost.
3. Only the Index.php file was deleted, and replaced with a leet page, and it's too cryptic for any real leet. This sucks. :(

:mad: :mad: :mad: :mad:

Sorry to see that. I just was trying to get on over there :(

What is up with people?!?! Why the need to destroy other folks' stuff/fun/livelihood? And all to get some fleeting "jollies" for themselves. :rolleyes:

I'm really sorry to hear about this, MM. Hopefully, you'll be able to get back up and running as soon as possible. I'm sure there must be some kind of extra anti-hack measures you can take for the future?

I had just checked there as well- sorry, MM! DO you have any way to recover, or catch them?

It was an exploit in the PHP I bet, maybe one not even found yet. They also killed any tracks they could have left behind.

That is so ridiculous. I can't believe that there are losers out there who get jollies off of crap like this.

Laaaaaammmmme.

ultra lame.

Wow Hastin...your quick!



ok nevermind....I see it's a work in progress...I posted too soon :rolleyes:

That does suck. It was SUCH a pain for MouseInfo to get back up and running again after getting hacked. Luckily we have everything working again.

I really do love being an Admin for such a large thriving Disney community.

We're back. Not bad, only lost about 200 members....

Yeah, Hastin!!!! Good job!:snap:

Huzzah!

Awesome job MM! That was seriously quick! You are one person who I believe actually is Leet!

:cheers:

ahem...its spelled l33t :p

Sorry, I'm not allowed to spell it the hacker way. I'm not a pimply virgin.

:D

(Not directed at you, BTW)

I would hope it wouldn't be directed my way, I actually passed by that phase of computer use long ago....jeez, I haven't even been pimply in a good 10-15 years, and virgin, god, its been about the same length of time. But was around when things started being spelled that way, before the script kiddies today were even able to use a computer.

I get more pimples now than I did as a teen. :rolleyes:

But, that's irrelevant. Good job, MM!

I was totally freaking out, I even called Zap to see what was going on and of course he didn't answer. :rolleyes:

Great Job MonorailMan!! :snap: :snap: :snap:

At least it wasn't TOO bad. Good to hear that it's back up and running.

Fifteen minutes before you called Steve & I came home from dinner and were going to bed. You missed the cut off time ! :p

The sad thing is that I think it's pretty common. I run a web board similar to LoT and the rest, and just last week, we were hacked as well. Some script-kiddie gained access to our MySQL database, but they only changed the overall header titles to something string that broke the DB on some pages. (Layman's translation: We didn't lose anything, they just pissed us off.)

Boo urns to script kiddies.

Maybe they should go outside and make some nice little friends! :D

but then the hours and hours they sit in front of their computers waiting for the script to do the work would be in vain

Just curious...

Now that's it is well past April 1st. Does anyone want to post any updates to this thread?

Well, we lost about 200 members on MiceChat but we've recovered 20 of those so far. We posted an announcement in several places so readers will know what's going on. Things should return to normal shortly. That's about all to report.

S E C U R I T Y

its important even for websites and databases - call and complain to your hosting company, unless it is a dedicated server it is their responsibility to help lock down your server your site is on

It's now up to 80. :)

FYI, it looks as if they got in through a vB bug. Jelsoft is looking at the issue. :)

That's good. Updating vBulletin and any other software with the latest release is a good idea. It's easy if it's all you have but can be a major pain when you've hacked into files.

Speaking of script kiddies... :D

Well color me embarrassed. :blush:

I just assumed the whole micechat business was an addendum to the April Fool's hi-jinks going on around here and only posted my last message so you would finally fess up. Oops..

Yes, it's mighty confusing when one board where I mod is really hacked and another board where I mod (cough*cough) is phoney hacked as an inside job joke.