renaultsport forum attack!

seb · Jul 26, 2008

or not...

got this when i just this minute tried to load the page... seems majorly weird to me? surely it is fine! anyone got any ideas why?

using latest version of firefox btw

Aluco · Jul 26, 2008

Suspected links with "Stealers"

seb · Jul 26, 2008

Daz · Jul 26, 2008

It's been hacked, yes
If you load it, it tries to load stuff from some russian website!

FireFox 3 protects you and stops it loading.. as it checks with Google prior to loading.

Not very good for such a large site....

Aluco · Jul 26, 2008

Ve haff many luffers for sale in zis part of muzzer russia!

seb · Jul 26, 2008

ok, coolio, so i'll leave it for a wee while then. trust in firefox

Daz · Jul 26, 2008

I think, it's just been fixed?
No error now.. Heh.

http://www.google.com/safebrowsing/diagnostic?site=http://www.renaultsport.co.uk/

Weird.

Definetely tried to access some .ru site a bit ago!

Andy. · Jul 26, 2008

We got hacked last week. Somebody is busy with a SQL injection hack on a load of sites. Might not be the same as this one but we had some javascript tryng to load something from a site in China. Sounds similar.

Daz · Jul 26, 2008

AndyRS said:
We got hacked last week. Somebody is busy with a SQL injection hack on a load of sites. Might not be the same as this one but we had some javascript tryng to load something from a site in China. Sounds similar.

Yep. We had someone ring up with the same thing.. SQL injection stuff - The SQL process was going crazy!

Andy. · Jul 26, 2008

At least it is easy to fix.

Daz · Jul 26, 2008

AndyRS said:
At least it is easy to fix.

Yea, turn the site off until the developer gets his finger out!

The Hoff · Jul 26, 2008

We've been hacked twice with SQL injection through our forms. The POS webserver runs on W2K, IIS5 and Coldfusion.

The webturds upstairs are adamant they know what they're doing and we've issued a hands off on any work from ourselves as its all so Fking messy!

What fix did you use? We used triggers on any script tags.

Andy. · Jul 27, 2008

The fix is something to do with the cfqueryparams function.

Our guys said that would fix it.....

seb · Jul 27, 2008

rs forum still comes up with same message for me today

is it still unsafe?

Daz · Jul 27, 2008

seb said:
rs forum still comes up with same message for me today is it still unsafe?

Looks like it's been done again, yep..

seb · Jul 27, 2008

lame tbh.

the only place i get 197 love

Cookie · Jul 28, 2008

Daz said:
AndyRS said:

We got hacked last week. Somebody is busy with a SQL injection hack on a load of sites. Might not be the same as this one but we had some javascript tryng to load something from a site in China. Sounds similar.

Click to expand...

Yep. We had someone ring up with the same thing.. SQL injection stuff - The SQL process was going crazy!

We've had ~300 customers sites suffer in the last month or so... people can't code for s**t

Paul RN · Jul 28, 2008

Sorted yet? I'm still getting this website is unsafe

Daz · Jul 28, 2008

Paul RN said:
Sorted yet? I'm still getting this website is unsafe

Question and answer in one sentance.. not bad

KDF · Jul 29, 2008

I thought mysql had built in injection prevention techniques ? or maybe that was the latest PHP...

Ye, think it was PHP actually lol.

Search

Search

renaultsport forum attack!

seb

Aluco

seb

Daz

Aluco

seb

Daz

Andy.

Daz

Andy.

Daz

The Hoff

Andy.

seb

Daz

seb

Cookie

Paul RN

Daz

KDF

Similar threads