Web Application Security
Help! Blogs.ntu.edu.sg was hacked. Dec 17 2012 04:04PM
Teo En Ming \(Zhang Enming\) (singapore mr teo en ming gmail com) (3 replies)
Re: Help! Blogs.ntu.edu.sg was hacked. Dec 18 2012 07:12AM
mitchell (mitchell tufala net) (1 replies)
Re: Help! Blogs.ntu.edu.sg was hacked. Dec 18 2012 03:19PM
Jackie McBride (abletec gmail com)
Well, these things can occur on multiple levels. If you searched the
database & found nothing, then your next course of action is to
consult your hosting provider (if you're not it). The .htaccess file
may provide clues, but, whatever the case, it does suggest the
possibility of a server rather than simply a site hack. If that is
indeed the case, & you're on shared hosting, then the hosting provider
really needs to be contacted, because you don't have sufficient
privileges to remediate that.

On 12/18/12, mitchell <mitchell (at) tufala (dot) net [email concealed]> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Check the .htaccess files.
>
> - --
> Dimitar Ivanov
> Security Consultant
> Web: http://www.websecuritywatch.com/
> E-mail: dimitar.ivanov (at) csc (dot) bg [email concealed], dimitar.ivanov (at) mtr-design (dot) com [email concealed]
>
>
> On 12/17/2012 06:04 PM, Teo En Ming (Zhang Enming) wrote:
>> Dear list,
>>
>> Blogs.ntu.edu.sg was hacked recently. Please search the Yahoo!
>> search engine for blogs @ ntu. You will observe that the Yahoo!
>> search engine returns results displaying nike shoe advertisements.
>> If the user agent is a browser or Google Bot, and the referrer is
>> Google, traffic to blogs.ntu.edu.sg will be redirected to
>> http://www.newfreeshoes.com/
>>
>> We have searched the wordpress directories and the mysql database
>> but found nothing. How can we trace what the hackers have done to
>> blogs.ntu.edu.sg?
>>
>> Thank you very much.
>>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.11 (GNU/Linux)
> Comment: Using GnuPG with undefined - http://www.enigmail.net/
>
> iEYEARECAAYFAlDQF1wACgkQiMNI9JfSVMHMPQCgl+HhKAg+f7F7iY1Qzm9f7uF3
> n3QAoJKJZfvkoXvnpY00VxtuAbXob93j
> =eP8d
> -----END PGP SIGNATURE-----
>
>
>
> This list is sponsored by Cenzic
> --------------------------------------
> Let Us Hack You. Before Hackers Do!
> It's Finally Here - The Cenzic Website HealthCheck. FREE.
> Request Yours Now!
> http://www.cenzic.com/2009HClaunch_Securityfocus
> --------------------------------------
>
>

--
Blame the computer--why not? It can't defend itself & occasionally
might even be the culprit
Jackie McBride
Ask Me Computer Questions at: www.pcinquirer.com
Jaws Scripting training materials: www.screenreaderscripting.com
homePage: www.abletec.serverheaven.net

This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now!
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------

[ reply ]
RE: Help! Blogs.ntu.edu.sg was hacked. Dec 18 2012 01:24AM
Rahman, Tariq (Tariq Rahman cytec com)
Re: Help! Blogs.ntu.edu.sg was hacked. Dec 17 2012 10:52PM
Alexander Pick (acpi mac com)


 

Privacy Statement
Copyright 2010, SecurityFocus