Results 1 to 6 of 6

Thread: painonline.com not safe right now

  1. #1

    painonline.com not safe right now

    Someone has managed to place some malware on the painonline.com website. All websites using Word Press have been taken over by some hackers attempting to set up a botnet using people's computers, so at present the website is probably not safe to access as it uses Word Press. The administrator tells me he is working on this, but it is apparently a worldwide problem. I don't know if painonline.org is similarly affected or not.

  2. #2
    Quote Originally Posted by dejerine View Post
    Someone has managed to place some malware on the painonline.com website. All websites using Word Press have been taken over by some hackers attempting to set up a botnet using people's computers, so at present the website is probably not safe to access as it uses Word Press. The administrator tells me he is working on this, but it is apparently a worldwide problem. I don't know if painonline.org is similarly affected or not.
    the internet is a wonderful tool, but sometimes I wish things were simpler again. sorry painonline.com has been hit I just don't understand people or this world any more.

  3. #3
    Painonline.org is temporarily off-line. I need to search for a new hosting service.

  4. #4
    painonline.com appears to have been fixed by the computer programmer. however, comments cannot be made now.

  5. #5
    Senior Member zagam's Avatar
    Join Date
    Jan 2007
    Location
    Western Australia - Hammer wielding daemon
    Posts
    619

    Turn off JavaScript and flame any site that requires it

    I know this rock bottom web site attack well:
    1. Rock bottom web site uses SQL and expands user input as SQL rather than use fixed parametised SQL.
    2. Remote injects a JavaScript Cross Site Scripting attack.
    3. You have to have JavaScript enabled to visit rock bottom web site.
    4. As JavaScript is an extension language of your client you are now totally pwned.
    5. They do a proxy server or TLS downgrade attack.
    6. You send your credentials which they harvest.
    7. They relay to your normal server via strong TLS.
    8. You don't notice anything unusual other than IP connecting to your normal server.

  6. #6
    zagam

    thanks for the explanation.

    Painonline is okay now. To prevent further incursions, the comments section, which was the entry point for the script kiddies bot has been removed.

Similar Threads

  1. New Article at Painonline on CP
    By dejerine in forum Pain
    Replies: 2
    Last Post: 05-31-2009, 11:25 PM
  2. This from painonline article
    By dejerine in forum Pain
    Replies: 18
    Last Post: 05-05-2009, 03:49 PM
  3. Painonline.com, dejerine
    By Skye83 in forum Pain
    Replies: 2
    Last Post: 10-08-2003, 05:49 PM
  4. A few updates to PainOnline
    By David Berg in forum Pain
    Replies: 0
    Last Post: 02-11-2003, 11:47 AM
  5. Two new pages on PainOnline
    By David Berg in forum Pain
    Replies: 0
    Last Post: 10-29-2001, 07:29 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •