Welcome Guest [Log In] [Register]
We hope you enjoy your visit.

You're currently viewing our forum as a guest. This means you are limited to certain areas of the board and there are some features you can't use. If you join our community, you'll be able to access member-only sections, and use many member-only features such as customizing your profile, sending personal messages, and voting in polls. Registration is simple, fast, and completely free.


Join our community!


If you're already a member please log in to your account to access all of our features:

Username:   Password:
Multiquote (on) Multiquote (off)
Add Reply
Hack !
Topic Started: Mar 22 2014, 06:57 AM (511 Views)
Robje
Member Avatar
Member
[ *  * ]
Two people Zachriel/raziel and Dinorexchris12753 Have Hacked my site.
http://w11.zetaboards.com/The_nature_fans/index/
What Can I do ? I managed to Ban them but somehow...
Offline Profile Quote Post Goto Top
 
Moonface
Member Avatar


How exactly did they "hack" your board?
Offline Profile Quote Post Goto Top
 
Ferby
Member Avatar
Developer
[ *  *  *  *  * ]
Moonface
Mar 22 2014, 09:58 AM
How exactly did they "hack" your board?
My question exactly.

It is pretty easy to get past a ban from a ZB board. If you're banning their account then they can create a new one if they're smart enough. If you ban their email they can use another one and if you ban their IP they can reset their router (or unplug & replug in) to change it so there's no 100% ban them even if you ban their entire country (NOT RECOMMENDED) because they could use an online proxy.

If they have your password and are using your account for their own deeds then I'd advise changing your password to something that meets all 4 of ZB's safe password guidelines (both lower & upper case characters, numeric characters, symbols and keeping it long).
Offline Profile Quote Post Goto Top
 
sugarpuff
Member Avatar
Member
[ *  *  * ]
Someone I know who has a zetaboard had a similar thing happen to him only just recently. He's now got this:
https://www.sitelock.com//

You might want to consider taking a look. Yes it costs, but for peace of mind...........

My domain hosting company has something very similar so I'm going to get that for mine. Hope this helps. :)

Also, if you haven't already, make your registrations admin/email approval as well and check ALL ip's before you let them in, to make sure they arn't using a proxy server. http://www.whatismyip.com
Edited by sugarpuff, Mar 23 2014, 10:50 AM.
Offline Profile Quote Post Goto Top
 
Ferby
Member Avatar
Developer
[ *  *  *  *  * ]
sugarpuff
Mar 23 2014, 10:48 AM
Also, if you haven't already, make your registrations admin/email approval as well and check ALL ip's before you let them in, to make sure they arn't using a proxy server. http://www.whatismyip.com
I wouldn't recommend that unless you want your forum to be private. You can't tell if a person is using a proxy or not when they register so if you're open to new members and you require each account to be approved, it becomes inefficient. Users don't want to wait to be let in. They want to get right to as quickly as they can. I do, however, approve of email approval as that helps but there have been cases when the email doesn't send for some reason. Even if you disable both of these things, they still have to enter the CAPTCHA text to determined if they're human.
Offline Profile Quote Post Goto Top
 
Pete B
Member
[ *  *  *  *  *  *  *  * ]
sugarpuff
Mar 23 2014, 10:48 AM
Someone I know who has a zetaboard had a similar thing happen to him only just recently. He's now got this:
https://www.sitelock.com//

You might want to consider taking a look. Yes it costs, but for peace of mind...........
You don't need that, just set a secure password on your forum and email accounts.
Offline Profile Quote Post Goto Top
 
sugarpuff
Member Avatar
Member
[ *  *  * ]
Ferby
Mar 23 2014, 01:13 PM
sugarpuff
Mar 23 2014, 10:48 AM
Also, if you haven't already, make your registrations admin/email approval as well and check ALL ip's before you let them in, to make sure they arn't using a proxy server. http://www.whatismyip.com
I wouldn't recommend that unless you want your forum to be private. You can't tell if a person is using a proxy or not when they register so if you're open to new members and you require each account to be approved, it becomes inefficient. Users don't want to wait to be let in. They want to get right to as quickly as they can. I do, however, approve of email approval as that helps but there have been cases when the email doesn't send for some reason. Even if you disable both of these things, they still have to enter the CAPTCHA text to determined if they're human.
You can tell if it's a proxy server if you check their IP before you let them in. Something I've always done.
Pete B
Mar 23 2014, 01:38 PM
sugarpuff
Mar 23 2014, 10:48 AM
Someone I know who has a zetaboard had a similar thing happen to him only just recently. He's now got this:
https://www.sitelock.com//

You might want to consider taking a look. Yes it costs, but for peace of mind...........
You don't need that, just set a secure password on your forum and email accounts.
It was just a suggestion. Only trying to help. :)
Edited by sugarpuff, Mar 23 2014, 01:44 PM.
Offline Profile Quote Post Goto Top
 
Mozz
Member Avatar
" It’s not a bug – it’s an undocumented feature "
[ *  *  *  * ]
I am the one Sugarpuff mentioned 4 hours of fixing it up, mine was done through my router, cause it did not clear a test admins account password for some reason, this the reoport i put up on Nexus.

Quote:
 
Right here we go , this annoyed me so much , hope filters are in place. Right it all started at about 357am yesterday morning, i was on my site doing some coding and graphics for a theme. Nothing strange about that one might ask. Anyway i logged out of the site. So in the morning about 8am i go to get on my site and i notice the images on all the themes i have are not there, keep in mind, these themes are not the one i was working on, these themes are from Helena Eccentric feline, all them. anyway, so i think ok the image host must be down, nope. all good there. i gp to check on ZN the themes and there all loading. Then i see a attack log from a marketing place in Israel, i think hang on, then i check ip's emails, my router password has been changed and the security has been lowered, my internet password has been changes. But they couldn't get passed the other security thankfully. We lock them out and change passwords which is all good, no registry logs detected, no mail ware detected but a trogan generic virus so it did nothing. But all my images were not there on all my themes. Ok now this is the smart ass bit, a test password was not cleared from my router history, they got in to my ACP, below the board and altered a script, a choose your country script . What this would have done if we didn't get on to it and my site security program had not got it, was everyone that logged on to my site, would have been smashed with mail ware through there accounts. . So before we knew this we had to do process of elimination, so every bloody code we deleted and added one by one refreshed the board, bit by bit adding bit by BLOODY bit each segment, cause when we deleted the templates, all the images came back, so this was why we did it this way, anyhoo eventually we found that code. what does that mean you may ask, well let me tell you, it meant TWICE THE BLOODY WORK that's what it meant. Any way my attack logs found the darling little Israel company believe me Revenge was a tasty dish. Oh everything is ok now, there not but we are.

Oh Thank you Helena for the response the support ticket as well. It was a little stressful yesterday morning, we have changed all passwords now.


Oh and the site link, it is worth it, it has a lot of different things that are put in place, woe to thee who hacks a password now .

But i agree, unless they have got a password, there nor going to get in.
Offline Profile Quote Post Goto Top
 
1 user reading this topic (1 Guest and 0 Anonymous)
« Previous Topic · ZetaBoards Support · Next Topic »
Add Reply