The UK Home Automation Archive

Archive Home
Group Home
Search Archive


Advanced Search

The UKHA-ARCHIVE IS CEASING OPERATIONS 31 DEC 2024

Latest message you have seen: RE: Browser on a TV?


[Message Prev][Message Next][Thread Prev][Thread Next][Message Index][Thread Index]

RE: Re: [OT] - HELP PLEASE we've been hacked.


  • Subject: RE: Re: [OT] - HELP PLEASE we've been hacked.
  • From: "Dean Barrett" <dean@xxxxxxxxxxxxxxxx>
  • Date: Tue, 13 Apr 2004 20:22:12 +0100

Thanks for that Chris.

At least you've stopped ROFLOL ;)

Once machine is formatted and reconfigured maybe I'll asked you to check it
out for me.



Dean.


-----Original Message-----
From: Chris Bond [mailto:chris@xxxxxxx]
Sent: 13 April 2004 19:32
To: ukha_d@xxxxxxx
Subject: [ukha_d] Re: [OT] - HELP PLEASE we've been hacked.

> I would be grateful for someone to explain HOW they did it ?

Thats the easy bit it would have either been a subnet scan that
checked for known exploits.  ie. remote buffer overflow that your not
patched for then automatically launch the attack.

I'll be pritty sure thats how they got on your system, the other
thing would have been weak passwords and a dictonary based attack on
RDC, mssql etc.  The other way they could have got in is a new buffer
overflow that there clever enuff to write themself.

They posted there nfo on there ftp login, quite a common technique of
warez hackers, they was only interested in running a ftp site to
propagate warez.

Your attackers almost certainly was from brazil, singapore or a
country like that as thats where most of them come from, 99% of
attacks ive seen have orignated from there abouts.






UK Home Automation Meet 2004 - BOOK NOW!
http://www.ukha2004.com

http://www.automatedhome.co.uk

Member Offers - http://www.freeranger.co.uk/ukha

UKHA_D Main Index | UKHA_D Thread Index | UKHA_D Home | Archives Home

Comments to the Webmaster are always welcomed, please use this contact form . Note that as this site is a mailing list archive, the Webmaster has no control over the contents of the messages. Comments about message content should be directed to the relevant mailing list.