Well, no malicious stuff installed on my system, but it's just a matter of time with that injection hole sitting there.
Well, no malicious stuff installed on my system, but it's just a matter of time with that injection hole sitting there.
I'll be in the chat room if anyone needs more info. Not going to keep refreshing the page here since I have to do so with AV off.
We are doing a site migration soon, I was trying to hold off updates until then. Looks like I might have to do an update sooner than I hoped before the move. This doesn't seem to affect Mac users, but I do consider it a major issue for all the Windows. It also makes us look bad too.
Hopefully such attacks will become less likely once we've moved to a much more secure host.
WILL, you REALLY need to fix this ASAP. Your site is attacking your users *right now*. It's not a cosmetic issue; there's a malicious piece of code that your site is serving to your users every time they load the page. That forum thread on vBulletin.com tells you how to fix it.
If it were me, I would shut down the board until it is fixed.
Just FYI, I would suggest to everyone to blackhole the kokosina.in domain if you continue using this forum until it is fixed. (add the following line to your hosts file in the C:\windows\system32\drivers\etc directory:
127.0.0.1 kokosina.in
Note that this doesn't make browsing the site more secure, it just addresses the current hack. They can change it at any time to point somewhere else. You continue using the forum at your own risk.
You guys - I hate to re-mention this but you could just move over to linux it might not be entirely net attack proof but at least you can rest easy knowing that no virus or windows virus based attacks would work. Combine that with firefox and noscript as well as noflash and adblock and your pretty much golden.
I once tried to change the world. But they wouldn't give me the source code. Damned evil cunning.
You can also downgrade your Windows to version 3.1, where no modern virus will work or even better, shut down your computer entirely, after which you won't be vulnerable to any kind of computer attacks.
Seriously though, this is why for Afterwarp site we have moved away from vBulletin, for more than a year they did nothing to fight spam (PGD uses same techniques we've been using in vBulletin 3 for years), made their prices ridiculously high and even though you own permanent license they constantly nag you to renew, sometimes with death letters. Now this vulnerability has shown that vBulletin is poorly designed so that it technically allows these type of hacks. I would never use vBulletin again.
Bookmarks