Jump to content
Ghost Recon.net Forums
Yodasplat

Virus that attacks PHP forums

Recommended Posts

I don't know if you guys are aware of this, or if somebody already posted this here. If so, apologies.

If not, heads up. This virus attacks and defaces PHP forums ... and the IPB forum (like GR.net) is PHP based ...

http://www.msnbc.msn.com/id/6742668/

:blink:

I'm glad I got rid of PHP for my board ... I'll say.

Share this post


Link to post
Share on other sites

That is the worm that attacked and defaced the 3dretreat network, I recognise the name.

Share this post


Link to post
Share on other sites

I am still reading on this, but I think this is only a concern for PHPbb boards. Funnily enough I recall chatting to our webhost 3 weeks ago, and he was flat out working on patching all his servers because of a new vurnerability with PHPbb boards. I searched the web and found nothing, and he told me that news had not leaked out mainstream, but that sysadmins were working flat out patching their servers.

Share this post


Link to post
Share on other sites

Sorry for the multiple posts, yeh this is only a PHPbb problem, IPB forums like this are (should be) fine.

Share this post


Link to post
Share on other sites
Sorry for the multiple posts.

edit button??? :P

Hey what can I say... "my forums....." :P

Share this post


Link to post
Share on other sites
I knew that was coming..proceed to spam then sir... ;)

How did you know, that's the first time I have ever said that in over 7000 odd posts? Ah you knew beacuse you set me up big guy!!

Share this post


Link to post
Share on other sites
Yeh?

:P

Since I'm talking to the site owner does this qualify as non-spam? I need the posts actually :santa:

You're a Supporter, can you get away with anything around here :thumbsup:

Anyway, we best get this back on topic before a moderator spots us having a little fun.

Share this post


Link to post
Share on other sites

busted_cop.gif

OMG'z!!!! Spammers!!!!!!!

[3.10] Spam Do not use our Forums to advertise your business or seek personal gain. People come here to read about Ghost Recon and related topics. The definition of "spam" is down to the forum moderator in the first instance. If you are unsure about making a post, ask via private message or e-mail.

:P

Share this post


Link to post
Share on other sites

My site was simple htm and html with javascript menus. Apparently it does more than the php.

Share this post


Link to post
Share on other sites
My site was simple htm and html with javascript menus. Apparently it does more than the php.

It got in through the 3dretreat forums, and attacked the server from there, including your pages there. I believe that's how it works.

Share this post


Link to post
Share on other sites
It got in through the 3dretreat forums, and attacked the server from there, including your pages there. I believe that's how it works.

3d Retreat uses Snitz forums, not PHPbb. The problem was that another website hosted on the same server used PHPbb and was not secured.

Fortunately we do regular backups and the majority of the site and our forums was pretty much back to normal within 3 hours of the attack.

Share this post


Link to post
Share on other sites

I've read that the worm attacks any vunerable phpbb board, then screws with any files on the entire server that are html, php and a few others.

Share this post


Link to post
Share on other sites

One more addition to the long list of why people should not use PhpBB. Ever.

Share this post


Link to post
Share on other sites

Do you want the bad news or the bad news? I just noticed there's a website on the same server as this that uses the PHPbb forums.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×