Hacked

[Matt Tottle]

Most likely it's someone who has a sort of personal vendetta with the forum or the moderators/administrators or Tim, that is trying to be sneaky and using a proxy server to attempt to be cute. Most likely, they were trying to mess with forum settings or crash it. Since they were putting "Hacked by Andy" signs up, I could assume that they know one of the several Andy's currently on the forum, or is a previous member, or perhaps someone close to the late Andy Gabrielson, however, that is speculation at this point.

Well seeing as it happened two days before he died.......................... I'd call that one a big fat 'NO'.

List of Andy's currently on the forum, bottom of page 3, and then again top of page 4.
http://www.stormtrack.org/forum/memberlist.php?page=3&order=asc&sort=username

Do you realize how many millions of Andrews there are out there? Hell it could've been you for all we know, hiding behind the 'Drew'..

It was a random hit and run. Nothing more to it.


Edit: I highly doubt anyone from ST has much to do with a Singapore Rolex Owner's Club forum.... (remember their dates are DD-MM-YYYY) http://www.sg-roc.com/threads/81579-http-www.sg-roc.com-got-hacked-!-!-!-Admin-pls-do-something...

 

[Lee Smith-Whaley]

but why us? why not deal with something with a little more meat, like the Government or something

Practice? I know, I read an article one time on how hacking groups will sometimes go on "hacking sprees" defacing websites just to practice, and "show off". Not saying it's all true, but possible.

 

[Rob H]

Boredom? Bragging rights to their friends? People might be surprised at how often these two are the primary motivators in something like this. It's pointless speculation because it's not worth trying to track people back through what is likely a chain of multiple proxies and hacked shell accounts, all for what amounts to some defacing of a website that was quickly reverted. Instead of launching a McCarthyist witch hunt within the community, we should all probably make sure our passwords are changed if using the same password somewhere else. Which is a bad idea to begin with, but I'm sure plenty of people here do that.

 

[Drew.Gardonia]

well, who knows. hope they slip up and get caught.

 

[Glenn Dixon]

Two things - first, if you want to see a forum that got really and truly 'hacked by Andy' go here:

http://forums.bigegogames.com/forum.php

(note, I'm on a Mac - if you get a warning on a PC, back out!)

The animated gifs and audio file are all being served from p0wersurge.com - which appears to be a security/hacking forum. Did *they* get hacked? If not, that URL is about to get blacklisted big-time!

Having said all that, that is one crazy ASCII animation! LOL

A quick Google search shows that there was obviously some sort of vBulletin vulnerability, and these guys scanned the internet for it. Any vulnerable site they found got hacked. Why? Maybe just for the lulz, maybe looking for credit card data -- who knows? Maybe just to steal passwords and then use user accounts for places to store more hacking scripts?

 

[Drew.Gardonia]

a google search and some investigating shows their base website with forum as

http://www.p0wersurge.com/forum/

I found it through here, apparently these clowns hacked this forum too

http://www.alphaluna.net/

in the comments about halfway down the page

Cécile says:December 25, 2011 at 2:43 pmHey! About your site's hack.

One of my friends uses this website a lot and wanted me to take a look at what happened. Obviously, your forum was hacked.

If you take the binary Dante wrote and run it through a translator real quick, you get:

"Hacked by Dante you should get better security, need help? [email protected]"

The trailing text (what follows the cursor), "48 61 63 6b 65 etc" is simply the HEX version of that.

Team PS is Team Power Surge, a hacking and cracking (and defacing) group.(http://www.p0wersurge.com/)

Anyways, if you are the webmaster/admin/whatever I would suggest emailing Dante to get your forum back, if you are unable to do it yourself.

Bye!

continue reading the comments.