Ravens PHP Scripts

WebHosting Talk website severely hacked/compromised
Date: Friday, March 27, 2009 @ 12:56:06 CET
Topic: Security

From Dennis Johnson (WHT):

It's been pretty hectic around here, but I wanted to make sure as many members as possible know what's going on. At approximately 8:30 pm EST on Saturday, March 21 The malicious attacker deleted all backups from the backup servers within the infrastructure before deleting tables from our db server. We were alerted of the db exploitation and quickly shut down the site to prevent further damage.

We've tried to answer any questions or concerns in the following thread posted at http://www.webhostingtalk.com/showthread.php?t=729727. Be sure to subscribe if you want to stay informed.

WHT Data - Q&A Information
What do we know about the damage done?

This attack was very deliberate, sophisticated and calculated. The attacker was able to circumvent our security measures and access via an arcane backdoor protected by additional firewall. We are still investigating the situation, but we know the attacker infiltrated and deleted the backups first and then deleted three databases: user/post/thread. We have no record or evidence that private message data was accessed. Absolutely no credit card or PayPal data was exposed.

Read the entire story

This article comes from Ravens PHP Scripts

The URL for this story is: