Netnibble - The Blog

• HOME
• Netnibble Sites »
• HQ
• USA North
• USA South
• USA West
• UK
• Europe
• Asia
• Hong Kong
• Pacific
• NIC
• SUPPORT

Security

New variant on MPACK hacking

Tuesday, August 26th, 2008

I thought these villains had been quiet for too long and then, last night, I happened to notice a support ticket in our queue from a customer claiming that we had hijacked his site, or the server it was on. The ticket had already been pushed up the line to one of our senior techs [...]

Joomla! 1.5.* Vulnerability

Thursday, August 14th, 2008

Project: Joomla!
SubProject: com_user
Severity: Critical
Versions: 1.5.5 and all previous 1.5 releases
Exploit type: Password Reset Forgery
Reported Date: 2008-August-12
Fixed Date: 2008-August-12
Description
A flaw in the reset token validation mechanism allows for non-validating tokens to be forged. This will allow an unauthenticated, unauthorized user to reset the password of the first enabled user (lowest id). Typically, this is an administrator [...]

DNS Vulnerability - Cache Poisoning

Saturday, July 19th, 2008

Recently a new DNS vulnerability has been discovered (Read the story here) which allows a malicious hacker to poison a DNS cache. The ability to poison a cache allows someone to redirect traffic (web, ftp, email, etc) away from intended sites to a hacker’s own site(s), which may host virii, trojans, bot-inserters, etc, so it [...]

Another hacker attack

Friday, October 19th, 2007

I seem to be writing more and more about hackers getting into sites, and just today I got this from one of our UK suppliers …
We are writing to inform you that we have recently discovered evidence of a network intrusion involving a ###### server. We have reason to believe that the intruder [...]

Continuing MPack hack attacks

Tuesday, October 2nd, 2007

And so it goes on …
The Register reports today that the Chinese Internet Security Response Team web site (www.cisrt.org) is the latest high-profile site to fall foul of the hackers.
Read the full story here
Tagged as:chinese internet hackers internet security security response teamShare This

‘Professional’ hackers at large

Thursday, September 20th, 2007

A bunch of hackers using a commercial hacking program (MPack) are on the loose, and causing some considerable concerns amongst web-site owners and hosting companies.
They are accessing multiple web sites to add a single line of code directly to the main index pages, which closes down the browser window and brings up a pop-up [...]

Domain Name Checker www. .com .net .org .info .biz .us .name .mobi .eu .asia .cc .tv .bz .mn .ws .in .co.in .net.in .org.in .gen.in .firm.in .ind.in .co.uk .me.uk .org.uk .com.au .net.au .org.au .asn.au .id.au .co.nz .net.nz .org.nz .ac.nz .geek.nz .maori.nz .gen.nz .school.nz

Pages

• About this blog
• Back-up Blog

Recent Posts

• Upgrades, moves, and new services
• New variant on MPACK hacking
• Joomla! 1.5.* Vulnerability
• California earthquake
• DNS Vulnerability - Cache Poisoning

Categories

• Email traffic
• Fantastico updates
• Infrastructure
• Netnibble Tidbits
• Programming
• Security
• Service Announcements
• Special Offers
• Technical

Archives

• September 2008
• August 2008
• July 2008
• May 2008
• March 2008
• February 2008
• January 2008
• December 2007
• November 2007
• October 2007
• September 2007
• August 2007
• July 2007

Netnibble Sites

• Netnibble Asia
• Netnibble Australia
• Netnibble Europe
• Netnibble Hong Kong
• Netnibble HQ
• Netnibble Script Demo Site
• Netnibble SUPPORT
• Netnibble UK
• Netnibble USA North (New Jersey)
• Netnibble USA South (Texas)
• Netnibble USA West (Los Angeles)

User

• Login
• Lost your password?
• Register
• Entries RSS
• Comments RSS

Tag Cloud

21st century AccountLab Plus amsterdam announcements anti spam ariel Asia Asia Pacific atlanta georgia usa atlanta usa atlas Australia b3Evolution bandwidth beancounters better bulk mail california chino hills connectivity control panel options Coppermine coupon code cPanel Crafty Syntax customer accounts customer services data center datacenter ddos ddos attack directadmin disk capacity disk space DNS dns cache dns resolvers dns setup domain name domain registrars domain registry earthquake edge routers email enhancement program exploit Fantastico fortress itx fortressitx free disk space Gallery goliath google GoogleMail hack hacker hackers Help Center Live hong kong server hosted sites hosting hosting companies htaccess infrastructure internet security intrusions Joomla joomla! kernel memory knowledgebase magnitude mail mail server maintenance maintenance window maintenance windows malicious code malicious hacker mars measures memory management monitoring services mpack msn name server neptune network network engineers network failure network intrusion new asia new features new generation new jersey usa news node omega plan Open Realty operating system pandora parallels peer1 pennsylvania usa perldesk php5 php 4 programming phpCOIN plesk power blackout power reliability power test premium network programming quotas reboot registrant resellers route traffic saturn script scripts security security response team Sender Policy Framework server network serverbeach servers service Singapore sophos spam spf stable service Staff switches tidbits trojans typo3 upgrades usa network venus virginia usa virtual private servers virtuozzo vps vulnerability WordPress yahoo Yahoo! zen cart

58 spam comments

blocked by
Akismet

Copyright © 2005-2008 Netnibble - The Blog » Low-cost, high-value Internet for Everyone