People For Change website hacked - being abandoned

Other DUers may have had their email addys 'harvested' and received the hackers' notice, to whit ...


The website owner's notice that they're hanging it up - not enough time and money to bother dealing with the mess - is on the home page.
http://www.peopleforchange.net/

Pity some progressive whiz kid with expertise in these here internets couldn't step up and give them folks a hand...

Seems like a prosecution might be in order. But hey, what do I know?

:shrug: What happens if DU gets rooted?

not only for defense but maybe retaliation.

Knowledge is power.

Don't think about doing it unless you're prepared to go to jail for a long time.

even if you don't do it yourself?

Oh wait...

Too bad they won't consider announcing a hacking -- in favor of the blues.

sigh...

Sorry about that, TahitiNut. That really stinks.

I googled his "signature" and found other sites he's hacked.

---------------------


People For Change Forums
~~~~~~~~HACKED BY KMKM~~~~~~~~~~ Ahh! I will release it, but only if u pursuade me by pming me in ICB. Links to visit :- www.h4ckme.org ...
www.peopleforchange.net/forums/index.php - 28k - Cached - Similar pages

(OFFLINE) Board Offline
HACKED BY KMKM!!! Special Thanx to Buff Humbe h4ckyou h4ckme 3l3ctr1c & Demmo for their help and support. Places to visit:- www.h4ckme.org ...
www.icyhell.net/forums/index.php?showforum=32 - 35k - Cached - Similar pages

(OFFLINE) Board Offline
FORUM HACKED BY KMKM ~~~~~~ I CAME , I SAW , I PWNED!!!!!!!!!!! Thanx to, Buff and Choozy Humbe and "3l3ctr1c" Anyways.. if you are a bit smart the forum ...
forums.plakias.co.uk/index.php?act=calendar - 26k - Cached - Similar pages

(OFFLINE) Board Offline
Forum Hacked~~~~~! Special Thanx to ... www.indianschatboard.com and oh! about myself, I live in NY in USA... come beat me up someday :P Kudos! ~KMKM ...
map.planetmedalofhonor.gamespy.com/callofduty/forums/index.php?s=1f73ecbdbc57460051f3f78c93bd2974&act... - 27k - Cached - Similar pages

-----------------

I also found some other things which led me to what is apparently his bulletin board (which he lists in his hack note) which appears to be hosted at http://www.indiachatboard.frih.net/ and a link to his blog http://kmkm.indiachatboard.frih.net/ entitled "Kritesh's Life Book." His hosting service is frih.net.

Perhaps you'd care to let folks know. He should also be reported to frih.net aka http://www.frihost.com/.

Just my 0.02.

... forum software. PFP was using an old trial version and Invision has had several 'security' fixes and upgrades to the version they were using. It doesn't take much to exploit a scurity hole after finding out about it from the software publisher ... and then finding sites using unpatched software. All the 'hacks' you list are forums.

:shrug:

I found some of his posts at a forum software site asking for help in setting up his own forum software. It appears it's a new "skill" he's learned and is out playing with it at other people's expense. Sort of like when an infant first discovers their feet will fit in their mouth and they spend hours enamored of their own toes.

NT

... and the software platform on which it runs have been kept up-to-date and all known security holes have been plugged. I get the impression elad does a pretty decent job, though. A bit depends on the intrusion detection mechanisms and practices used by the ISP, too.

I think PFC's site was probably "low-hanging fruit."

I have a friend that got hacked through a vulnerability in the PHP code. The hacker's IP was supposedly in Turkey in the ranges of: 85.97.**.** 85.98**.**, 85.99**.**, and 85.100**.**.

Can't they just pack it all up and switch to a new server/host?

That's a popular implementation 'language.' :shrug:

All the cool kids use it. Personally, I shy away from keeping any kind of database on my server but I'm funny like that. My blog software is semi low-tech. The database is on my machine and I upload when I post. I have a neglected message board but it's a WYSIWYG app that I lease and it's on someone else's server. It's UBB. My boss uses PHP for static pages but his message board is vBulletin.

I never liked the sound of name PHP nuke. That's like begging for a hack.

Sorry about the site. I am wondering if this is all the same gang o hackers. If it is, I'll let you know. I may not be an expert but we adult webmasters are pretty good at sussing out who is behind crap like this cause we get hit with it all the time.

I grew a certain (fairly well-known) site into a huge PostNuke site -- very, very bad idea. Russian hacker nailed me three times in as many days (also killing a promising LGBT message forum), and took all the fight out of me. It's been a ghost site for over a year now, and I've only recently been motivated to start picking at it again.

I detest PHP, and use it only for the creation of dynamic pages whose headers and footers may need a quick change. I will NEVER again rely on it for programming.

Your apparent ease over the situation is admirable, TN, but still, I'm so sorry! :(

It's not my site ... it's merely one to which I subscribed. As a subscriber, my email was in it's database, so the skript kiddy taunted me as well, I assume, as other subscribers.

and the hacker has it. I'm not tech literate so I have no idea how the hacker could harrass a person who was in PFC's database. :shrug:

does he/she not have anything better to do?!?!? i'll never understand the appeal of hacking (unless there was a huge financial payoff after blowing up the site)

:cry:
The original Site Which Cannot Be Named.