AVN just got hacked!
 

Hacking is like water and electricity in that it follows the path of least resistance. I’m currently researching the hacker boards to see if I can find out what was used for this breach but it was most likely a common vulnerability. As is often the case!


http://www.avn.com/forums/

How long has the 404 page been there & what was there before that?

Must have just went up. Hack was by Yusef the turk hacker or somthing. i didnt take a screen cap.

What're you researching and where?

Trying to get on Zone-H but the site is down.

Good luck!

I’ve been doing a little research and it looks like the hacker “Yusuf the Turk” has made a run at several phpBB based sites. Do a Google for “hacked by yusuf” and you’ll see what I mean. Also, apparently phpBB has a bad history of being hacked. I can conclude that the hacker most likely used a vulnerability in phpBB to hack AVN.

I suggest anyone else using this software to immediately have it scanned to see if it has any vulnerabilities. (<- last part a shameless plug for me;))

ScannerX, you have made this post on several boards.

Are you in anyway connected to this 'hack' and possibly using it to promote your 'service' ??

That same thought crossed my mind too :D

I'm just surprised that AVN use phpBB.

They had to decrease their budget after the poor showing at Internext.
|jester|

Ain't there anybody that's going to ban this fool, that has no idea what he's talking about and is obviously spamming with his service?!?

I can appreciate your concern that because I have so few posts that should not be trusted. Yes I’m hoping to push my services but then again aren’t we all. I am not however trying to spam anyone but only trying to be helpful in the community. I had hoped that by providing what is obviously much needed assistance that I could gain some measure of trust.

As for being involved with hacking… I highly resent those remarks. I am a security professionally with over 15 years of experience servicing both corporate and government clients. Additionally only a newbie, script kiddie, moron would hack a site and try to extort payment. That’s highly illegal the last time I checked.

And only a dick attempting to push his service would attempt to create panic in a community in order to extort payment.

I was not trying to create a panic but trying to be informative. I’d like to thank everyone for the negative feedback. I’ll be sure not to post anything like this again.

|waves|

That's all I needed to hear.

I think "clever spam" annoys me more than the drive-by fucktards.

There is "clever spam" and "not so clever spam" |jester|

Another one's gone...another one's gone...another one bites the dust! Always liked that song :D

I think me and UW should start a "security" company.. for lots of money we will come to your house, drink all your merlot, eat all your food... then install a pirate copy of norton on your computer.

:D

i was surprised it was hacked...saw it yesterday when i visited the forum.

Ah taking down a website is what kids do. People who are learning how to hack. I mean it's not that hard if you really want to do it. Scan a box find out what services are running and what versions they are. Then go and search for the vulnerabilities and exploit them. Then tell the world how you are great and you cracked someone’s box.
Now this is real hacking
http://news.zdnet.com/2100-1009_22-5969516.html

Real hacking is done, and you don't tell anyone. But like everything else people like to brag..