Password hacking - GoFuckYourself.com

cafeaulait · 02-08-2003, 05:37 AM

I have just gone through my Pennywize blocked accounts for Jan and discovered that most of the hacked accounts appear in exactly the same order as the members are joining the site, how can this be?

All passwords are random generated so it can't be brute force, could someone be sniffing my site traffic for passwords in URL or confirmation emails? Is this even possible?

Mutt · 02-08-2003, 05:45 AM

there are exploits out there for some of the third party processors, some of the hackers can add their own passwords or at least get your password file and then decript it, or whatever the word is for that.

looks like you use Glo-bill. You should search the 'security' sites and look around, maybe Globill has a weakness in their scripts some smarter surfers have found.

demented · 02-08-2003, 05:47 AM

Could be If they really wanted into your site.

Socks · 02-08-2003, 05:48 AM

Yeah they are definitely adding passwords themselves. I'm not being sarcastic, this is what's happening to you. Contact Glo-Bill, and have them look into it, it could very well be a network-wide problem with them, not you. What are the steps you would use to add a password/user?

Socks · 02-08-2003, 05:50 AM

By the way, the average person cracks into a site using a real user's account name and password. That's clearly not what is happening to you, unless those *were* real users.

greathope · 02-08-2003, 06:22 AM

i know many password,but i donn't want to post publicly

cafeaulait · 02-08-2003, 07:59 AM

Thanks guys I'll look into this further.

Greathope, what do you mean? Passwords for my site or in general?

02-08-2003, 05:37 AM	#1
cafeaulait Confirmed User Industry Role: Join Date: Jun 2002 Posts: 587	Password hacking I have just gone through my Pennywize blocked accounts for Jan and discovered that most of the hacked accounts appear in exactly the same order as the members are joining the site, how can this be? All passwords are random generated so it can't be brute force, could someone be sniffing my site traffic for passwords in URL or confirmation emails? Is this even possible?

02-08-2003, 05:45 AM	#2
Mutt Too lazy to set a custom title Industry Role: Join Date: Sep 2002 Posts: 34,431	there are exploits out there for some of the third party processors, some of the hackers can add their own passwords or at least get your password file and then decript it, or whatever the word is for that. looks like you use Glo-bill. You should search the 'security' sites and look around, maybe Globill has a weakness in their scripts some smarter surfers have found. __________________ I moved my sites to Vacares Hosting. I've saved money, my hair is thicker, lost some weight too! Thanks Sly!

02-08-2003, 06:22 AM	#6
greathope Registered User Join Date: Oct 2001 Location: www.zaodao.com Posts: 30	i know many password,but i donn't want to post publicly __________________ www.zaodao.com an asian site

02-08-2003, 05:47 AM	#3
demented Confirmed User Industry Role: Join Date: Dec 2002 Location: Cincinnati Ohio Posts: 2,388	Could be If they really wanted into your site.

02-08-2003, 05:48 AM	#4
Socks Confirmed User Industry Role: Join Date: May 2002 Location: Toronto Posts: 8,475	Yeah they are definitely adding passwords themselves. I'm not being sarcastic, this is what's happening to you. Contact Glo-Bill, and have them look into it, it could very well be a network-wide problem with them, not you. What are the steps you would use to add a password/user?

02-08-2003, 05:50 AM	#5
Socks Confirmed User Industry Role: Join Date: May 2002 Location: Toronto Posts: 8,475	By the way, the average person cracks into a site using a real user's account name and password. That's clearly not what is happening to you, unless those were real users.

02-08-2003, 07:59 AM	#7
cafeaulait Confirmed User Industry Role: Join Date: Jun 2002 Posts: 587	Thanks guys I'll look into this further. Greathope, what do you mean? Passwords for my site or in general?