Wordpress Themes - WP Forum at BFA
There will be no more development for Atahualpa (or any other theme), and no support. Also no new registrations. I turned off the donation system. I may turn the forum to read only if it gets abused for spam. Unfortunately I have no time for the forum or the themes. Thanks a lot to the people who helped in all these years, especially Larry and of course: Paul. Take care and stay healthy -- Flynn, Atahualpa developer, Sep 2021

Wordpress Themes - WP Forum at BFA » WordPress Themes » Atahualpa 3 Wordpress theme »

Forum was compromised, you might be affected


  #1  
Old May 18, 2010, 02:29 PM
Flynn's Avatar
Flynn
 
3,768 posts · Oct 2008
Munich, Germany
Javascript code was inserted into several forum pages, probably for the last 1-3 days.

It should be fixed by now but I'll need until tomorrow to get a more detailed picture.

I don't know yet what the purpose of the JS code was but will post more about that later.

If you have no Virus software running I suggest to install one such as http://free.avg.com/ and run it once.

I am sorry for the trouble.

More information later
  #2  
Old May 18, 2010, 02:55 PM
paulae's Avatar
paulae
 
1,333 posts · Feb 2009
Wordpress 3.4.1, Atahualpa 3.7.7
Nasty feeling, being hacked.

I guess those of us running Macs don't need to worry? I've seen no problems so far.
  #3  
Old May 18, 2010, 04:44 PM
GuruJ's Avatar
GuruJ
 
34 posts · Dec 2009
Seattle, Wa
I came to the site when it was unwell. I was at the time actually watching my traffic as I just tweaked some network settings to help speed.
Nothing new or different came in.
I have also just finished the AVG scan & Windows Defender scan, both were clean.

So far we look clean!

Sorry you had to be violated.
  #4  
Old May 19, 2010, 02:21 PM
Flynn's Avatar
Flynn
 
3,768 posts · Oct 2008
Munich, Germany
Quote:
Originally Posted by STB
thanks for the headsup

can you post the javascript - perhaps edit out domains or ip's that were in it - ,

so we can check and see if we should be worried, or can find out what to check on our pc's?


edit: I would advice to update vB to at least 3.8.5
It was an encrpyted line of Javascript calling a file from a remote server, a russian porn site. It seems to be something that tries to use computers for its (email or whatever) spam bot net.

If your virus program doesn't issue an alarm then probably nothing happened. It doesn't appear to be too sophisticated.

This is a bought license and the newest I could get would be 3.8.4. I did however upgrade to the newest version in the 3.7 series. This made the import of the old DB easier and the latest of one 3.X should be just missing features, not security. I also tightened file and directory permissions.

Bookmarks



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Forum Plugin hospitalera Plugins & Atahualpa 17 Aug 17, 2010 11:26 PM
WP Forum + Atahualpa: User cannot see the forum Janine Plugins & Atahualpa 7 Jan 25, 2010 10:39 AM
Forum Link in Footer clothahump Post-Kicker, -Byline & -Footer 10 Nov 26, 2009 07:10 AM
Forum Issues ldsmedia Atahualpa 3 Wordpress theme 2 Jul 10, 2009 09:16 PM
We need a Showcase Forum joe hark Atahualpa 3 Wordpress theme 1 Mar 18, 2009 01:15 PM


All times are GMT -6. The time now is 01:36 PM.


Powered by vBulletin® Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.