FlyerTalk Forums

FlyerTalk Forums (https://www.flyertalk.com/forum/index.php)
-   Technical Support and Feedback (https://www.flyertalk.com/forum/technical-support-feedback-386/)
-   -   this site was hacked (https://www.flyertalk.com/forum/technical-support-feedback/1019844-site-hacked.html)

panda317 Nov 23, 2009 3:49 am
this site was hacked
 
This site was hacked, and the server was compromised. There was no notification from the management that passwords, etc. should be changed. That is poor.

How can I delete my account?

lougord99 Nov 23, 2009 5:22 am
What information does this site have that concerns you?

shadesofgrey1x Nov 23, 2009 5:27 am
Originally Posted by panda317 (Post 12865406)
This site was hacked, and the server was compromised. There was no notification from the management that passwords, etc. should be changed. That is poor.

How can I delete my account?
My question to you is how do you know passwords were compromised?
The "hack" looked like a simple redirect to me, not an actual breakin.

curbcrusher Nov 23, 2009 5:53 am
This thread is off-topic for the Southwest forum, so I am moving it to the Technical Issues forum.

IB-Dick has posted the following explanation:

Originally Posted by IB-Dick (Post 12862812)
We believe that the attackers found a vulnerably in a piece of software on the site. We became aware of the exploit last week and patched the software accordingly. Our security scan of the site did not uncover any additional problems, however someone had left a back door onto the server. We have located and removed the malicious scripts.

We are very sorry for the inconvenience today.

Steph3n Nov 23, 2009 5:59 am
if someone left a backdoor, it means they had access to file that could access other parts of the server/site...even if web based backdoor and not actual server side backdoor.

IB would be good to expire all passwords and require a force change.

num1bearsfan Nov 25, 2009 10:17 am
In my experience as an administrator of various internet message board software, user account passwords are hex encrypted and are not even accessible to back end administrators. A password can never be recovered. You may have experienced a scenario where you've forgotten your log in, and had to go through the "forgot password" process. In which case you are asked to create a NEW password. This is a pretty well maintained and high end version of VB. I would not be worried.

BayTalker Nov 25, 2009 12:16 pm
.....


All times are GMT -6. The time now is 9:41 am.


This site is owned, operated, and maintained by MH Sub I, LLC dba Internet Brands. Copyright © 2026 MH Sub I, LLC dba Internet Brands. All rights reserved. Designated trademarks are the property of their respective owners.