\[ANN\] Please change your Forum passwords following recent attacks
-
Friends,
Feathercoin is no stranger to attacks and today we experienced an attack on our website. This is likely an attack on the forum software we use and independent of the Feathercoin network.
[center][img]http://www.feathercoin.com/image/Hack_Dancing_Cat_2.png[/img]
[i]Trez cool ASCI art with catchy tune; still could have been worse, could have been a dancing Litecoin! [/i][/center]Please change your passwords. If you used the same password on other sites… why??! Don’t do that, it’s not a good idea: use something like [url=https://lastpass.com/,]https://lastpass.com/,[/url] works well with Yubikey for 2-Factor protection. But not before changing your passwords on the other sites first.
You can checkout the defaced page here which Bush has immortalised: [url=http://forum.feathercoin.com/hacker.php]http://forum.feathercoin.com/hacker.php[/url]
-
*bump
-
Ffs. Lovely ascii art, shame.
I hate having to change my password.
Cheers for the heads up.
-
Also notify the forum users for possible phishing emails…
-
-
[quote name=“chrisj” post=“53495” timestamp=“1390173904”]
This is likely an attack on the forum software we use…
[/quote]…and yet we’re still using it? And I can log in with my old password??? Wrong way to deal with this entirely. :(
What was the attack, and how has it been patched?
[img]http://cdn.memegenerator.net/instances/500x/45030316.jpg[/img]
-
Password changed
-
[quote name=“Kevlar” post=“53529” timestamp=“1390185296”]
And I can log in with my old password!!!??!!!?? Wrong way to deal with this entirely. :(
[/quote]So is there any point in changing passwords?
-
Passwords are hashed with a salt. My concern is phishing attacks as they managed to dump all the email addresses.
Please be extra vigilant when reading your emails. If you get an email from BTC-e telling you to login for some reason do not use the links in the email, go direct to the webste as you normally would.
-
[quote name=“Bushstar” post=“53572” timestamp=“1390208629”]
Passwords are hashed with a salt. My concern is phishing attacks as they managed to dump all the email addresses.Please be extra vigilant when reading your emails. If you get an email from BTC-e telling you to login for some reason do not use the links in the email, go direct to the webste as you normally would.
[/quote]Ok. Cheers man. Point well received.
-
[quote name=“Bushstar” post=“53572” timestamp=“1390208629”]
Passwords are hashed with a salt. My concern is phishing attacks as they managed to dump all the email addresses.Please be extra vigilant when reading your emails. If you get an email from BTC-e telling you to login for some reason do not use the links in the email, go direct to the webste as you normally would.
[/quote]
mass email to everyone and for the future consider adding IDS on the server -
I have now moved the forum to a new server and will bring across all the sites hosted on the compromised server.
The attackers managed to get some pretty dangerous attack files on our server in a Theme directory. Chances are that a site modification is how they managed to get on in the first place. For this reason SMF is currently running vanilla with no mods installed, not even reCAPTCHA. I can see in the access log that someone was trying to escape reCATPCHA. This means that for now we also lose the chatbox and the local map feature. I intend to bring the local maps back online.
Custom avatars and attachments are also disabled. All old ones have been removed.
I am still in the process of moving the other websites from the old host to the new one double checking everything along the way.
-
Something worth pointing out, is that anyone who changed their password when initially requested, prior to the the site coming back online should still change their password again IMO. I know it seems obvious, but it’s worth mentioning. :)
-
[quote name=“Bushstar” post=“53572” timestamp=“1390208629”]
Passwords are hashed with a salt. My concern is phishing attacks as they managed to dump all the email addresses.Please be extra vigilant when reading your emails. If you get an email from BTC-e telling you to login for some reason do not use the links in the email, go direct to the webste as you normally would.
[/quote]I’m always reading emails off my Windows Phone (Lumia 1520/1020 ) ::) Not too worried about its security model unlike Android…
Never once that its on the workstation unless it comes from a trusted source.Moreover, I registered to Feathercoin with my junk mail :P One that I mostly use for registering to sites and not reading.
-
[quote name=“chrisj” post=“53495” timestamp=“1390173904”]
Friends,Feathercoin is no stranger to attacks and today we experienced an attack on our website. This is likely an attack on the forum software we use and independent of the Feathercoin network.
[center][img]http://www.feathercoin.com/image/Hack_Dancing_Cat.png[/img]
[i]Trez cool ASCI art with catchy tune; still could have been worse, could have been a dancing Litecoin! [/i][/center]Please change your passwords. If you used the same password on other sites… why??! Don’t do that, it’s not a good idea: use something like [url=https://lastpass.com/,]https://lastpass.com/,[/url] works well with Yubikey for 2-Factor protection. But not before changing your passwords on the other sites first.
You can checkout the defaced page here which Bush has immortalised: [url=http://forum.feathercoin.com/hacker.php]http://forum.feathercoin.com/hacker.php[/url]
[/quote]Done, Thanks.
-
I don’t even remember my password :o
-
[quote name=“Feather5154” post=“54471” timestamp=“1390516690”]
I don’t even remember my password :o
[/quote]I had that problem… so I logged out and tried to log back in and at that point had my PW reset.
