Sepwich has Been Hacked!

[Supasonik11]

Some dude named tails92 hacked sepwich.

Info Here-http://essen.sepwich.com/mb/viewtopic.php?f=5&t=954

 

[Cue]

That's not hacking Sepwich, that's hacking Conic and DarkKitsune's insecure account details, it doesn't take a genius to get into an FTP account via brute force or other means.

Script kiddies aren't hackers, just lucky.

 

[Fawfulfan]

Still, though, it's not a good thing, eh?

 

[Cue]

Still, though, it's not a good thing, eh?

It's their own damn fault for not securing their account details properly, if they had used better password they wouldn't have had that trouble.

 

[MasterJace]

I still say it's all trivial. Then again, I'm apathetic to the whole situation anyway.

 

[Spiderpig]

They are not the only ones. This was not done by tails29, but it is still serious. TDM is the only one left in charge, and he is not even aware of any of this. http://www.essen.sepwich.com/mb/index.php

 

[Cue]

This hacker sucks. I would have taken the entire thing down and redirected everything elsewhere by now.

Pathetic hacker is pathetic. :(

 

[Fyrus]

It's still pretty damned dumb.

 

[Spiderpig]

My account has been DELETED. I had to evade 2 times to try to get to the bottom of it. I think the hacker's username is "HappyLithium"

 

[clairebun]

For all I'm concerned, it's probably just a silly moniker the hacker chose to increase the nonsense factor of the forum. I've said this on IRC already, but let the professionals sniff him out.

 

[Cue]

My account has been DELETED. I had to evade 2 times to try to get to the bottom of it. I think the hacker's username is "HappyLithium"

And you got that from what?

 

[TDM]

Yeah, I found out myself. Oddly enough, I couldn't have logged on anyway, because I had just changed my password and apparently spelled it wrong both times.

So what should we do? Should we move back to the old one for an interim location?

 

[Cue]

Honestly, it's attention seeking, and the best thing you can do is realise how pathetically easy what he's doing is. It's not hard to get into an account, most Sepwich users won't even use decent passwords. Like I said, script kiddy, a decent hacker would have the entire Sepwich domain down by now.

 

[Ezer'Arch]

Probably the "hacker" was watching this topic at SigSev when I had posted this message:

http://www.sigsevcafe.com/mb/viewtopic.php?p=21237#p21237

When I had posted that, I was able to list my posts via "Search user’s posts", and just after 3 minutes, I was no longer able to do anything!

EDIT:

Seems database is gone.

 

[TDM]

Um, now the guy's just being entertaining. He keeps increasing the size of his "username's" text, and he just added a "warning".

 

[PoisonUnagi]

It says, 'this message board has no forums' on the Index, and 'this topic does not exist' for that info topic. Is this just me?

 

[Ezer'Arch]

My account has been DELETED. I had to evade 2 times to try to get to the bottom of it. I think the hacker's username is "HappyLithium"

HappyLithium belongs to the WadBase staff? Because I saw HappyLithium user name in bold and yellow letters.

 

[Mystic]

In other news, weak passwords are weak.

Let this be a lesson to everyone. Use passwords that have lower case, upper case, and numbers, and make sure you're not using words that can be obtained via a dictionary test.

This is not a hacker, and I don't see the issue here. We don't need to discuss the exploits of someone with a lot of time on his hands and the ability to guess weak passwords. Fix your passwords and move on.

 

[Cue]

While it could well be a case of bad passwordism, I have just been informed that it's possible to access database information on other Sepwich accounts. I won't go into details about how, because that would be silly, but I suggest those with precious data on Sepwich keep an eye out and protect their configuration files.

That is all.