Results 1 to 18 of 18

Thread: Welcome to Anal SEX Forums

  1. #1
    Owner Dan Druff's Avatar
    Reputation
    10492
    Join Date
    Mar 2012
    Posts
    56,203
    Blog Entries
    2
    Load Metric
    85267938

    Welcome to Anal SEX Forums

    Apparently some foreign spammer found an exploit in this version of vBulletin and used it to send out a ton of spam from my server with the following subject:

    Subject : Welcome to Anal SEX Forums at www .***** .com .cn

    This happened at around midnight tonight.

    I *'d out part of the URL so it doesn't get any further google help from this site.

    No idea what they are exploiting yet.

    Has something to do with the e-mail system that verifies users.


  2. #2
    PFA Emeritus Crowe Diddly's Avatar
    Reputation
    1954
    Join Date
    Mar 2012
    Posts
    6,682
    Load Metric
    85267938
    I had just seen this earlier today, don't know if it helps.

    http://krebsonsecurity.com/2013/10/thousands-of-sites-hacked-via-vbulletin-hole/

    Thousands of Sites Hacked Via vBulletin Hole

    Attackers appear to have compromised tens of thousands of Web sites using a security weakness in sites powered by the forum software vBulletin, security experts warn.


    Attack tool for exploiting vulnerable vBulletin forums.



    In a blog post in late August, vBulletin maker Jelsoft Internet Brands Inc. warned users that failing to remove the “/install” and “/core/install” directories on sites running 4.x and 5.x versions of the forum software could render them easily hackable. But apparently many vBulletin-based sites didn’t get that memo: According to Web site security firm Imperva, more than 35,000 sites were recently hacked via this vulnerability.
    The security weakness lets attackers quickly discover which forums are vulnerable, and then use automated, open-source exploit tools to add administrator accounts to vulnerable sites.


    Imperva said the compromised sites appear to have been hacked by one of two sets of exploit tools that have been released publicly online. The first was apparently used in a mass Website defacement campaign. A Google search for forums with the the rather conspicuously-named administrator account added in that attack (“Th3H4ck”) shows that many of the hack sites also are hosting malware. Among the sites apparently compromised is a support forum for the National Runaway Safeline and a site selling vBulletin add-ons.


    The second tool does effectively the same thing, except with a bit more stealth: The administrator account that gets added to hacked forums is more innocuously named “supportvb”. Here’s a Google search that offers a rough idea of the forums compromised with this exploit, which was apparently authored or at least publicly released by this guy.
    et cetera and so forth.

  3. #3
    Diamond mulva's Avatar
    Reputation
    543
    Join Date
    Mar 2012
    Posts
    6,966
    Blog Entries
    4
    Load Metric
    85267938
    there is some amazing software out there that just creates spam to promote.

  4. #4
    Owner Dan Druff's Avatar
    Reputation
    10492
    Join Date
    Mar 2012
    Posts
    56,203
    Blog Entries
    2
    Load Metric
    85267938
    I fixed that /install hole late last month. But thanks. It was a retarded lapse of security on vBulletin's part.

    I remember wanting to delete that directory in 2012 and they told me not to.


  5. #5
    Plutonium simpdog's Avatar
    Reputation
    1976
    Join Date
    May 2012
    Posts
    10,660
    Load Metric
    85267938
    Quote Originally Posted by Dan Druff View Post
    I fixed that /install hole late last month. But thanks. It was a retarded lapse of security on vBulletin's part.

    I remember wanting to delete that directory in 2012 and they told me not to.
    if you fixed it how did it happen?

  6. #6
    PFA Emeritus Crowe Diddly's Avatar
    Reputation
    1954
    Join Date
    Mar 2012
    Posts
    6,682
    Load Metric
    85267938
    Quote Originally Posted by simpdog View Post
    Quote Originally Posted by Dan Druff View Post
    I fixed that /install hole late last month. But thanks. It was a retarded lapse of security on vBulletin's part.

    I remember wanting to delete that directory in 2012 and they told me not to.
    if you fixed it how did it happen?
    a different way, obv. there's been zillions of holes in vbulletin over time, and there will be more in the future.

     
    Comments
      
      Belly Buster: holes rep

  7. #7
    Silver
    Reputation
    280
    Join Date
    Mar 2020
    Posts
    674
    Load Metric
    85267938
    So where's the anal sex forum? You know, just out of curiosity...


  8. #8
    Platinum garrett's Avatar
    Reputation
    89
    Join Date
    Mar 2013
    Location
    east coast
    Posts
    4,673
    Load Metric
    85267938
    Is this why (not ur site but) I seemingly get such stupid spam to may emails that are years old. Why cant it be stopped?

    been happening for a couple years to me.

  9. #9
    Photoballer 4Dragons's Avatar
    Reputation
    2686
    Join Date
    Apr 2012
    Location
    Detroit
    Posts
    10,648
    Load Metric
    85267938
    :HOF

    Name:  book-page-cant-be-showed.jpg
Views: 549
Size:  164.1 KB

  10. #10
    Serial Blogger BeerAndPoker's Avatar
    Reputation
    1402
    Join Date
    Mar 2012
    Posts
    10,114
    Blog Entries
    20
    Load Metric
    85267938

     
    Comments
      
      GambleBotsChafedPenis: Sasha Grey Hot Pornstar Rep

  11. #11
    Owner Dan Druff's Avatar
    Reputation
    10492
    Join Date
    Mar 2012
    Posts
    56,203
    Blog Entries
    2
    Load Metric
    85267938
    I believe I tracked down the exploit and fixed it.

  12. #12
    NoFraud Poker Room Manager Belly Buster's Avatar
    Reputation
    1346
    Join Date
    Mar 2012
    Location
    England
    Posts
    3,627
    Load Metric
    85267938
    Quote Originally Posted by Dan Druff View Post
    I believe I tracked down the exploit and plugged the hole.
    FYP.
    Quote Originally Posted by Dan Druff View Post
    BTW JACKDANIELS is the first one banned from the thread. He is accusing me of being "duped by a middle aged man who dresses like John Cena"
    #FREEJACK #NEVERFORGET

    NoFraud Online Poker Room: http://nofraud.pokerfraudalert.com:8087. For password resets and reload requests PM me.

  13. #13
    aka PP23 badguy23's Avatar
    Reputation
    673
    Join Date
    Jun 2012
    Posts
    6,077
    Load Metric
    85267938
    Magic Johnson is behind this -780

    Fluffer is behind this -650

    Field +400

  14. #14
    Photoballer 4Dragons's Avatar
    Reputation
    2686
    Join Date
    Apr 2012
    Location
    Detroit
    Posts
    10,648
    Load Metric
    85267938
    Quote Originally Posted by Belly Buster View Post
    Quote Originally Posted by Dan Druff View Post
    I believe I tracked down the exploitedteenangels.com and fapped to it.
    FYP.
    FYFYP

  15. #15
    Plutonium simpdog's Avatar
    Reputation
    1976
    Join Date
    May 2012
    Posts
    10,660
    Load Metric
    85267938
    Quote Originally Posted by 4Dragons View Post
    Quote Originally Posted by Belly Buster View Post

    FYP.
    FYFYP
    domain available.

    Let's go 45/45 on it and give 10% to druff?

  16. #16
    Plutonium Sanlmar's Avatar
    Reputation
    4483
    Join Date
    Mar 2013
    Posts
    22,042
    Load Metric
    85267938
    Quote Originally Posted by Dan Druff View Post
    Apparently some foreign spammer found an exploit in this version of vBulletin and used it to send out a ton of spam from my server with the following subject:

    Subject : Welcome to Anal SEX Forums at www .***** .com .cn

    This happened at around midnight tonight.

    I *'d out part of the URL so it doesn't get any further google help from this site.

    No idea what they are exploiting yet.

    Has something to do with the e-mail system that verifies users.

    Target marketing

  17. #17
    Photoballer 4Dragons's Avatar
    Reputation
    2686
    Join Date
    Apr 2012
    Location
    Detroit
    Posts
    10,648
    Load Metric
    85267938
    How is this not all neverstop's fault?

  18. #18
    Feelin' Stronger Every Day tony bagadonuts's Avatar
    Reputation
    565
    Join Date
    Mar 2012
    Posts
    3,558
    Load Metric
    85267938
    I thought Anal Azzclown might have woken up from his nap and gone into business with gaysex.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Anal Sex
    By Riboflavin in forum Flying Stupidity
    Replies: 65
    Last Post: 07-04-2016, 09:52 PM
  2. Immediate Attention: ANAL Hershieser
    By RobbieBensonFan in forum Flying Stupidity
    Replies: 12
    Last Post: 03-31-2013, 04:04 AM
  3. Anal Tattoos Next Big Thing?
    By fluffer in forum Flying Stupidity
    Replies: 18
    Last Post: 08-21-2012, 03:54 PM
  4. Replies: 5
    Last Post: 07-29-2012, 04:18 PM
  5. Hey all just arrived from the dd forums as well
    By nunbeater in forum Flying Stupidity
    Replies: 14
    Last Post: 03-08-2012, 06:33 PM