Main > Main Forum

---WARNING--- - password hacking attempt on many accounts -- UPDATE --

Pages: << < (7/22) > >>

ark_ader:


--- Quote from: saint on February 16, 2011, 02:25:50 pm ---For what it's worth, I have no indicators that we *have* been hacked. My warning about your password is precautionary (and good advice in general)... :)



--- End quote ---

You do not have a three try lockout or something similar for an indicator?



saint:


--- Quote from: ark_ader on February 16, 2011, 02:32:53 pm ---
--- Quote from: saint on February 16, 2011, 02:25:50 pm ---For what it's worth, I have no indicators that we *have* been hacked. My warning about your password is precautionary (and good advice in general)... :)



--- End quote ---

You do not have a three try lockout or something similar for an indicator?

--- End quote ---

The behavior looks a lot like a brute force attack. No one account is ever attempted more than once in a row, though repeated periodically. It's pretty much:

Try a username/password. Fail
Try another username/password. Fail
Try another username/password. Fail
.
.
.
Try the first username/password. Fail

Each from a different IP address with random time intervals between.

A 3 tries and you're locked won't really work in this attack due to the long time intervals and IP hopping, unless someone sees something I'm overlooking? Suggestions welcomed of course... I am banning the IP addresses used in the attack which is having a pretty good effect in stopping the attempts, but more IP addresses are easy to get...
 

ark_ader:

Perhaps you should disable the avatar uploading facility just to be sure, and purge all avatars from the board. 

You can have members email you their avatars later on.  If it was my site, I would do this immediately.

RayB:

So Driver-ManBoy is a 14 year old script-kiddie. That actually explains a lot.


pinballwizard79:

who are we talking about, ive been a good member I deserve to know  ;D

Pages: << < (7/22) > >>

Go to full version