Active Topics
-
[HOWTO] Comprehensive Firmware Flashing Guide for N9 (1,580)
to Nokia N9 / N950 by aspergerguy - 21 hrs, 1 min ago -
Nokia N9-00 Prototype Build S1.12 (RM-680 codename "Dali") (250)
to Nokia N9 / N950 by en0s - 3 days, 17 hrs ago -
[Announce] Maebble - Pebble support for Maemo (118)
to Applications by glo-worm - 4 days, 5 hrs ago -
Possible to flash Leste to eMMC? (6)
to Maemo 7 / Leste by Eri - 4 days, 19 hrs ago - more...
|
2007-08-08
, 19:01
|
|
Posts: 550 |
Thanked: 110 times |
Joined on Aug 2006
|
#12
|
This site isn't exactly known for the most proactive administration. The ip needs to get banned immediately and reported to the ISP. Reverse DNS reveals it to be a static ip provided by a hosting company called "The Planet" in Texas. It is likely a compromised rented server, but equally possible it could be a rented server which some script kitty is using for hacking purposes. I sure hope they didn't rent that server on daddy's credit card, cause if they did, they are in for a world of hurt.
|
|
2007-08-08
, 19:28
|
|
Posts: 330 |
Thanked: 57 times |
Joined on May 2007
@ BKNYC
|
#13
|
I got the same ******** email also..."Hi i am new here blah blah blah..."
I thought it was a joke, because of a thread i started that was being attack on the basis that it was thought to be spam.
but i guess not.
I thought it was a joke, because of a thread i started that was being attack on the basis that it was thought to be spam.
but i guess not.
 |
|
2007-08-08
, 19:54
|
|
Posts: 531 |
Thanked: 79 times |
Joined on Oct 2006
@ This side of insane, that side of genius
|
#14
|
i happen to be a member at forums.remote-exploit.org and both sites gave me that email. seems like there is something more than meets the eye going on here.
__________________
Nokia n800
OS 2008
Pharos iGPS 360-BT
ElmScan 5 BlueTooth
BlackBerry Bold (9000)
AT&T Wireless
Nokia n800
OS 2008
Pharos iGPS 360-BT
ElmScan 5 BlueTooth
BlackBerry Bold (9000)
AT&T Wireless
|
|
2007-08-08
, 20:01
|
|
Posts: 93 |
Thanked: 4 times |
Joined on Jul 2007
@ Anywhere but here
|
#15
|
I'm starting to think this might be a fully automated attack, this box might just be trying to brute force forums in general, not for the forum accounts but for the passwords. Logic possibly being that people have a tendency to use the same username and password across multiple websites, and the person behind this is probably hoping that your PayPal account is the same thing as your ITT account. So. Make sure it isn't.
|
|
2007-08-08
, 20:06
|
|
Posts: 149 |
Thanked: 134 times |
Joined on Jul 2007
@ Florida
|
#16
|
Sounds like 2 things going on here...
1. Brute force attack.
Likely rotating usernames with the passwords in an attempt to keep from getting locked out, but obviously running into dupes too quickly (causing the temporary lockouts).
2. Social engineering(?)
The guy I got the same lame private message from called himself "einstein2".
I'm not sure if there might be something embedded in the message (I didn't bother reading through the HTML), but it did include a link to http://stein.freehostia.com (which is blocked by our proxy). I would not recommend following the link, as it may host malware.
1. Brute force attack.
Likely rotating usernames with the passwords in an attempt to keep from getting locked out, but obviously running into dupes too quickly (causing the temporary lockouts).
2. Social engineering(?)
The guy I got the same lame private message from called himself "einstein2".
I'm not sure if there might be something embedded in the message (I didn't bother reading through the HTML), but it did include a link to http://stein.freehostia.com (which is blocked by our proxy). I would not recommend following the link, as it may host malware.
 |
|
2007-08-08
, 20:35
|
|
Posts: 1,436 |
Thanked: 3,144 times |
Joined on Jul 2005
|
#17
|
I'm investigating the problem and have just blocked the IP from the firewall.
Thanks.
Thanks.
__________________
Reggie Suplido
Reggie Suplido
|
|
2007-08-09
, 07:44
|
|
Posts: 372 |
Thanked: 9 times |
Joined on Mar 2007
|
#18
|
same, i got an email from einstein2
Hello,
I'm new here and just wanted to say "hi"
How's it going?
"Buddhism has the characteristics of what would be expected in a cosmic religion for the future: it transcends a personal God, avoids dogmas and theology; it covers both the natural & spiritual, and it is based on a religious sense aspiring from the experience of all things as a meaningful unity" - Albert Einstein
---
einstein2
http://stein.freehostia.com
 |
|
2007-08-09
, 09:23
|
|
Posts: 218 |
Thanked: 4 times |
Joined on Apr 2007
@ localhost
|
#19
|
Originally Posted by luketoh
I got that mail too, Luke. I deleted it as I thought someone was playing a joke on me.
same, i got an email from einstein2
Looking a bit further at the link at the end of the message:
'Site stein.freehostia.com blocked; this is a known spyware/adware website.'
So don't visit.
__________________
The King is dead; long live the King! NIT out, Asus Eee PC 901 3G and BlackBerry Bold in!
The King is dead; long live the King! NIT out, Asus Eee PC 901 3G and BlackBerry Bold in!
Last edited by Frankowitz; 2007-08-09 at 09:26.
|
|
2007-08-09
, 14:16
|
|
Posts: 122 |
Thanked: 12 times |
Joined on Feb 2007
@ Helsinki, Finland
|
#20
|
I just got this private message from "einstein2", too. Let's see how soon my account is locked...
what would this guy gain from having my lame forum account?