29 replies to this topic

[Stan]

Emergency-planet.com is currently under attack

As some of you might have noticed, the site was down for some hours some hours earlier today. Die is due tot he fact that some people or a group is/are currently trying to get brute-force access to our server, I was able to restore all of the crashed databases and was able to reset the server successfully after 3 retries.

I currently know that damage to our OS has been done since we are not able to successfully perform any updates to our system at current time.

The bad thing is, I have no fix for this yet. The good thing is, I know who is behind it and was able to contact his/her provider. Ia m currently awaiting feedback from that provider.

Kind regards,
Stan

[rafnancy]

Can You tell us who did it and why ?

[SleepyLizard]

Are our accounts and information safe?

[Grim_Wizard]

Stan I may have had something to do with this (Not in a bad way of course) but... I'll check but a long time ago like a year ago, I got a PM by a deleted user, at first they were "Help me help me" and then it turned to flame. Appearently someone used my username (GerardTIII) and went into a hack group and pissed them off really bad, gimmie a sec I'll check my disposable email and the forums where they used to be.

But a brute force attack vs. a server was their calling card or some crap.

EDIT: I can see no clear evidence but it's higly likely. Or just someone else.

[FDNY Squad 55]

Sorry to hear it... for several hours when trying to log had a bad feeling

[Stan]

Since they don't have and will not be able to get access to the server they do not get anything that's on the server. Simple as that Passwords are not weak at all here Beside that the only thing they try to brute force at this time is my SSH account but well I rised security and disabled all SSH accounts now

This means all information is safe. All they can do is overload the server.

[SleepyLizard]

Good to hear! Thanks for the update!

[Grim_Wizard]

Our password hashes are salted right?

[Stan]

Our password hashes are salted right?

I remember having answered you that question already some time ago but anyways: Their goal is absolutely not to get your account information, which is of zero interest for anyone.

[Multibullets]

Why would they want to do that anyways? Do you have any idea what their goal is?

Maybe it's 4Chan demanding Hoppah to make a new LA mod

[Voodoo_Operator]

Maybe it's 4Chan demanding Hoppah to make a new LA mod

Unless the LA mod was made of underage porn, it's unlikely.

[Grim_Wizard]

Congratz, you made me lol in my classroom.

And myself just now, BTW Voodoo, you owe me a new computer monitor, mine is now covered in chocolate milk.
Also @stan, yeah I remember asking, I just didn't feel like looking back or doing a wire shark to find out.

[USAFFireFighter]

I have also received a few emails saying help me and so on..... by deleted members and or guests

[pyrofreak]

It seems more and more common anymore. Just last week Sony said they were delaying games so they could patch the game and prevent piracy. In the same week I noticed two or three sites I visit normally were attacked directly, or had their databases attacked. Ah ... the world we live in.

[Newfoundking]

some people think by attacking websites, they will get back at publishers for delaying games, or they'll reach the system and get to the game to play it for free and before hand just like in the movies...

They're stupid. Anyone that tries to hack a site for a reason like that is plain out stupid.

[Xplorer4x4]

But I doubt they downloaded a copy of the database only to see the email addresses. Don't worry.

They might. They can sell that list to companies to harvest for spam bots. Seen it done before.

[matte31]

Everything is safe, except email addresses and usernames, if they wanted to check them. But I doubt they downloaded a copy of the database only to see the email addresses. Don't worry.

So you mean that "the hacker" got everyones email? They can be used for spam mail etc.