This site was hacked and I read the hackers blog on how he did it. Keyword: mod_security.Lumpy Burgertushie wrote:if you got hacked from phpbb then you would be the first one to have that happen since phpbb 3 came out in 2007.
what exactly happened?
why do you think you were hacked and why do you think it happened from phpbb?
robert
I'm not entirely sure what you're referencing here. Please could you confirm [in private if sensitive]?John connor wrote:This site was hacked and I read the hackers blog on how he did it. Keyword: mod_security.Lumpy Burgertushie wrote:if you got hacked from phpbb then you would be the first one to have that happen since phpbb 3 came out in 2007.
what exactly happened?
why do you think you were hacked and why do you think it happened from phpbb?
robert
This site has been hacked in 2009 and it was NOT a mod_security's issue but - instead - of an employed third-party software (PHPlist). Before it was in 2005, not a mod_security's issue. Then I guess in 2014 but it was because they stole and abused the login credentials of a phpBB team member.John connor wrote:This site was hacked and I read the hackers blog on how he did it. Keyword: mod_security.Lumpy Burgertushie wrote:if you got hacked from phpbb then you would be the first one to have that happen since phpbb 3 came out in 2007.
what exactly happened?
why do you think you were hacked and why do you think it happened from phpbb?
robert
It was not even a hack. the attackers had the username/password of a staff member which gave them complete access to the server.We determined that on Friday December 12th, unauthorised access to the area51.phpbb.com server was obtained using credentials that had been stolen from a staff member via an outside source. To be clear, this was not done through a vulnerability in the phpBB software.
Are you sure about that? I can find your site's IP address in about 30 secondsJohn connor wrote:It's why I mask my IP with CloudFlare