Amiga.org
Amiga computer related discussion => General chat about Amiga topics => Topic started by: SysAdmin on January 11, 2012, 04:01:26 AM
-
News from zerohero via amigaworld.net
Dear amigaworld.net users,
We are sorry to admit it but it seems AmigaWorld.Net was hacked today. Most likely it wasn't our server the hacker got the passwords from, but we have no idea of knowing so far. We suggest everyone changes their password as quickly as possible.
We're sorry for any inconvenience this may have caused.
Regards,
AmigaWorld.Net staff
-
I don't condone hacking but if whoever is doing it why not hack something useful like CommodoreAmiga.org? :confused:
Why do the bad things always happen to the good people? :(
-
News from zerohero via amigaworld.net
Dear amigaworld.net users,
We are sorry to admit it but it seems AmigaWorld.Net was hacked today. Most likely it wasn't our server the hacker got the passwords from, but we have no idea of knowing so far. We suggest everyone changes their password as quickly as possible.
We're sorry for any inconvenience this may have caused.
Regards,
AmigaWorld.Net staff
Since Trevor's accounts appear to have been hacked on all forum sites, it would appear that the hacker either A. decided to only pick on Trevor for some reason, or B. they some how compromised Trevor's passwords only, perhaps by breaking into his computer, or some other method.
Just to be safe, I am changing all my passwords and suggest that everyone do the same. It is a good idea to do so periodically anyway.
-
Judging by the friendly nature of hackers post at Morphzone it appears as if the hacker is somehow related to Trevor. A friend, an ex-friend, familymember or fellow member of some Amiga-site. That or we have the friendliest hacker ever :)
-
That or we have the friendliest hacker ever :)
Outside of the Amiga-scene a message like the one on AmigaWorld.net can perfectly ruin your entire business. You must drink a lot of MorphOS cool aid if you don't see the hostility of the message.
But given the market, reputation and price tag of the X1000 I doubt that the brief period of misinformation will have an impact.
-
Let's be clear about one thing. There's nothing friendly about taking over someone's account and using it to post comments that could directly hurt their business. Trevor is a decent chap and has taken a significant risk in trying to bring a new machine to market.
-
I haven't been back to that site ever since I was banned for no good reason. I don't need to change my password so much as they can just go ahead and delete my account. :-/
-
I haven't been back to that site ever since I was banned for no good reason. I don't need to change my password so much as they can just go ahead and delete my account. :-/
Why did you get banned? What was the reason? :confused:
-
What do you guys use to manage your passwords? Do you all just have reliable recall?
Thanks!
-
Outside of the Amiga-scene a message like the one on AmigaWorld.net can perfectly ruin your entire business. You must drink a lot of MorphOS cool aid if you don't see the hostility of the message.
But given the market, reputation and price tag of the X1000 I doubt that the brief period of misinformation will have an impact.
Morphzone message was like "site admins please try to do your work better, best regards - the haxor". I have no idea what has been posted at aw.net.
-
re: PW management
I use Keepass and love it, but there's no Amiga version of it.
-
Morphzone message was like "site admins please try to do your work better, best regards - the haxor". I have no idea what has been posted at aw.net.
A very civil hacker indeed :) Well, I didn't see it on AW.net either, but I would imagine it was similar, if not the same as the one which is still on Amigans.net:
http://www.amigans.net/modules/xforum/viewtopic.php?topic_id=5123&forum=4
-
What do you guys use to manage your passwords? Do you all just have reliable recall?
Thanks!
Using 'Keyring' on a PalmOS Lifedrive here. I like to store my passwords offline.
Find it here:-
http://gnukeyring.sourceforge.net/
-
I don't condone hacking but if whoever is doing it why not hack something useful like CommodoreAmiga.org? :confused:
Why do the bad things always happen to the good people? :(
bite me. ;)
-
I don't condone hacking but if whoever is doing it why not hack something useful like CommodoreAmiga.org? (
What a hateful statement to make. Guess haters have to hate.
-
Seems like every week I'm reading in the news about somebody who posts something to Facebook et al that they later regret and then blame "a hacker".
-
And the big question, why all amiga sites was hacked?
And for what someone our passwords?
And what security have this Amiga sites?
-
It's the beginning of the end!!!1!1
-
Judging by the friendly nature of hackers post at Morphzone it appears as if the hacker is somehow related to Trevor. A friend, an ex-friend, familymember or fellow member of some Amiga-site. That or we have the friendliest hacker ever :)
I totally agree with Karlos, this attack on Trevor was anything but "friendly".
It is a real shame that Trevor has had to put up with so much abuse when he is really trying hard to improve this tiny community knowing full well that he will never recoup the investment he has made, just trying to bring us better hardware to run OS4 on. He deserves much better than that, even if you are one of the people that disagree with his choices (which mostly were not his choices anyway, as he left the specifications of the X1000 up to the OS4 developers and did not choose them himself).
Hopefully this won't happen again. It was reported on AW.net that maybe more than one account was compromised, but I don't know who else had their accounts misused by the hacker.
-
Hoolingan use the word "friendly" in other sense, a hacker make other kind of work, too serious this threads for a user accident.
-
Hoolingan use the word "friendly" in other sense, a hacker make other kind of work, too serious this threads for a user accident.
Thank you. At least someone got it right.
-
What was actually posted using Trevor's account?
I'm curious now.
-
What was actually posted using Trevor's account?
I'm curious now.
http://i.imgur.com/MB0iI.png
-
It's the beginning of the end!!!1!1
Nah, this is the beginning of the end.
http://americancensorship.org/
Surprised I haven't seen a thread here about it within the Amiga landscape - its quite a serious threat now
-
So any plans to reset the passwords?
- The h4cker
-
Password reset sounds like a good idea.
- The h4cker
-
As they say of New Yorker cartoons: "Christ, what an asshοle."
-
Guy was claiming to sell a sub 2 GHz dual core machine for 1700 quid and other outrageous stuff. Glad he got caught.
Seems like every week I'm reading in the news about somebody who posts something to Facebook et al that they later regret and then blame "a hacker".
-
@Persia
:roflmao:
-
Ouch. :roflmao:
-
I have not been able to get AmigaWorld.net to show up on any browser for the last 6 to 8 hours. All I get is "waiting for" message at the bottom of Firefox and AW.net never loads.
Anyone else been able to get in there, or has the hacker that has been messing with Amiga sites been successful in taking it down completely?:angry:
-
trying now and I am not getting there...
-
I THINK early this morning (Central European Time) it still worked.
But not anymore.
-
It responds to pings and can be tracerouted to without any problem. Seems like apache might be stopped.
-
Hmm port 80 connects, but nothing happens after that. Perhaps squid or some other reverse proxy in the front is up but the apache on the background is down.
-
Hmm port 80 connects, but nothing happens after that. Perhaps squid or some other reverse proxy is in the front is up but the apache on the background is down.
I don't think they are using squid or any sort of front-end cache, unless it's for static site assets only.
-
I still can't access amigaworld.net. Anyone that knows more about their issues?
BR
JJ
-
I still can't access amigaworld.net. Anyone that knows more about their issues?
BR
JJ
Not at this time. It's been at least 18 hours, possibly longer, since I last saw it up and running. Hopefully one of their staff can fill us in on what is going on.
-
I still can't access amigaworld.net. Anyone that knows more about their issues?
BR
JJ
Not much yet.
About 5 days ago irc lost services.
Then came the account hacking.
Yesterday there were mixed results from attempting to use the site.
(1)slow (2)blank front page (3)error messages in browsers like "failure to connect"
I should add that as a result of the lost services, if you use AW irc, you should connect through de.amigaworld.net or se2.amigaworld.net which basically uses .de.
Polarboing is still dead. (services)
#6
-
Not much yet.
About 5 days ago irc lost services.
Then came the account hacking.
Yesterday there were mixed results from attempting to use the site.
(1)slow (2)blank front page (3)error messages in browsers like "failure to connect"
#6
If I recall clearly, it's a dedicated server. It still pings promptly enough which suggests at least it isn't being DDoS'ed. Again, port 80 can be connected to, but it seems there's nothing listening on it.
Aside from hacking, it could be a broken/misconfigured update, disk failure or a number of other issues. One downside of a dedicated server is that the machine is basically yours to destroy and fix (unless you pay for support). Without any word from the admin, we can't know for sure.
-
If I recall clearly, it's a dedicated server. It still pings promptly enough which suggests at least it isn't being DDoS'ed. Again, port 80 can be connected to, but it seems there's nothing listening on it.
I consider the 3 separate issues listed in my prior post above to be merely coincidental, but we'll see.
#6
-
Hope its not down for as long as UtilityBase.org :cry:
-
I consider the 3 separate issues listed in my prior post above to be merely coincidental, but we'll see.
#6
It seems the problem has expanded to include DNS resolution; the name no longer resolves here (was fine earlier), but that could be just me.
-edit-
Pinging the address it was resolved to earlier no longer works (100% packet loss) :-/
-
Not only is AmigaWorld.net down, so is Aros-Exec.org. I wonder if this has something to do with Xoops since both of those boards run it.
-
Not only is AmigaWorld.net down, so is Aros-Exec.org. I wonder if this has something to do with Xoops since both of those boards run it.
Hmm, aros-exec.org still resolves OK but it seems there's nobody at home there, either (no ping response, port 80 closed).
-
I can't connect to amiga-news.de or aminet.net either.
-
> I can't connect to amiga-news.de or aminet.net either.
Same here.
-
Confirmed. Aminet also appears to be down.
-
Confirmed. Aminet also appears to be down.
i hesitate to say it, but os4depot.net (http://os4depot.net) is still up. i hope it doesn't go down now that i'm bringing attention to it.
this is either one heck of a coincidence or some pathetic little ponce thinks he's being impressive by bringing down a few retro-computing sites.
-- eliyahu
-
I'm trying to install OS3.9 on a real harddrive under winuae and I need to download files from Aminet to get going, I need the latest sfs and fixhdssize or hdinst. Is there anyone out there that knows where I can get these files if Aminet is down?
BR
JJ
-
i hesitate to say it, but os4depot.net (http://os4depot.net) is still up. i hope it doesn't go down now that i'm bringing attention to it.
this is either one heck of a coincidence or some pathetic little ponce thinks he's being impressive by bringing down a few retro-computing sites.
-- eliyahu
This is clearly an attack on Amiga. :angry:
There is one sick bastard on the loose out there somewhere!
(http://www.atarimania.com/st/screens/hacker_activision_2.gif)
-
I'm on http://aros-exec.org/ no problem
same with http://os4depot.net/
not the others
-
A router must have gone down :)
-
I can't connect to amiga-news.de or aminet.net either.
They're on the same server. It was just a hiccup, both sites are working fine again.
-
Use irc.amigans.net for IRC.
-
They're on the same server. It was just a hiccup, both sites are working fine again.
Whew! That is welcome news! It was beginning to feel like 2012, the end of the world...
-
Wonder if the admins took it down to get to the bottom of the recent hacking issues? Or, maybe it has been brought down somehow and not because they wanted to?
tj
-
Wonder if the admins took it down to get to the bottom of the recent hacking issues? Or, maybe it has been brought down somehow and not because they wanted to?
tj
If admins takes it down. there's usually a static maintenance page they direct traffic to.
-
Has AmigaWorld been hacked again but this time the entire site? It's been offline since last night and according to Safari the server doesn't exist! :-o
-
What a hateful statement to make. Guess haters have to hate.
Considering what I got in my inbox on commodore-amiga.org after pointing out my concerns regarding CUSA's claim on the long abandoned Amiga checkmark, I can only agree.
-
I can't believe we still don't know anything. I hope the hackers didn't get in there and kidnap the mods on the internet. :confused:
This is too quiet. Why aren't they telling us anything?
Is CUSA still alive? ;-)
-
They're on the same server. It was just a hiccup, both sites are working fine again.
Thanks for the fast reply.
Hope aw.net is back soon, too.
-
Hmmm ... cant open AW.net for few days
Temporary trouble or something serious?
-
http://www.amiga.org/forums/showthread.php?t=60346
-
Hmmm ... cant open AW.net for few days
Temporary trouble or something serious?
Is AW.net down? (http://www.amiga.org/forums/showthread.php?t=60346)
#6
-
Just noticed it, so its general issue, hope it will be fixed soon (as well as for Aminet)
-
Just noticed it, so its general issue, hope it will be fixed soon (as well as for Aminet)
There is nothing wrong with Aminet (http://www.amiga.org/forums/showpost.php?p=675983&postcount=24)
#6
-
And for Aminet you can always connect to one of the mirrors directly. This does not provide a mirror of the website, but all the files are accessible.
-
Sorry, posted on wrong thread
-
This is clearly an attack on Amiga. :angry:
There is one sick bastard on the loose out there somewhere!
(http://www.atarimania.com/st/screens/hacker_activision_2.gif)
Gizmo, what was that capture?. Please explain :)
Thanks in advance!!!
-
We had three separate threads about this now, so I've combined them.
I have been in touch with some of the staff from the site last last night. I don't know what the exact situation is now, but at around 1am GMT the then available information implied the site and potentially the server on which it is hosted have been been subjected to a concerted attack.
The issues with aminet and aros-exec were coincidental and not part of a wider attack pattern.
Since then, DNS is also been affected. The domain no longer points to the IP address of the server. There are a number of possible scenarios ranging from deliberate DNS cache poisoning to configuration issues or the result of measures taken to mitigate an ongoing DDoS.
I believe the site had a sound data backup policy, so once the immediate problems are fixed and any necessary post-mortem security fixes are in place, hopefully the site should be back up again.
-
Gizmo, what was that capture?. Please explain :)
Thanks in advance!!!
It's a screen shot from the game Hacker by Activision. :roflmao:
I thought a die-hard Commodore fan would have spotted it right off!
Just a little humor. :)
Anyhoo, hope that AW.Net is back to normal soon.
Anyone else notice that A.O is a little slow also?
-
I believe the site had a sound data backup policy, so once the immediate problems are fixed and any necessary post-mortem security fixes are in place, hopefully the site should be back up again.
Pretty much so, nightly backups scheme was introduced after the move to the new ISP last year. So in worst case scenario, 24 hours could be lost.
-
Anyone else notice that A.O is a little slow also?
Yup. Kinda of figure that it was my ISP at fault.
-
Yippee! AW.Net is back online! :)
-
Are you sure? I still cant access it.
It works... kind of.
I can access the front page but cant see anything else.
-
The font used in that screen is very Atarish. That got me somewhat also confused.
-
Are you sure? I still cant access it.
If you're using a Windows machine, try hitting Ctrl + F5 to flush the cache and reload the page.
-
Got it working. However when I log in it doesn't show posts ect.
-
Seems to be back after server problems.
-
Well It seems to be back up now ;-)