Someone tried hacking into my Paypal

.Hack · May 21, 2010

uplinked said:
had a server get cracked like this once
setup a dev server so our filipino outsource guys could login, and they had trouble typing my old root password ('sxt7,!#rsQQbfp!') so i let them change it to "whatever you want". they chose "p455w0rd", and i shrugged it off.
6 hours later, i got an email from amazon saying my server had been comprimised and was making a ton of requests to SSH into other servers.
i logged in to take a look, and found a big passwords.txt full of 20k common combinations of common shit, and a tiny script that continually tried passwords on random IPs until it found one that works. grepped the passwords.txt to find my password, and voila, it was #8 on the list to try. *sighs*

It's called bruteforcing

Taraqil · May 22, 2010

taktikz said:
Ok. Weird shit.. This dude shows up on my stats for a couple of my sites... One of the referring links is bing.com with the following search query: ip:127.0.0.1 "money" and ip:127.0.0.1 wordpress

127.0.0.1 being my sites IP address...

Wtf?

in case youre not joking, 127.0.0.1 is a loopback, aka localhost. It's everyones IP. what he was after i dont know..

Unarmed Gunman · May 22, 2010

Taraqil said:
in case youre not joking, 127.0.0.1 is a loopback, aka localhost. It's everyones IP. what he was after i dont know..

Somehow I don't think that's what he meant.

taktikz · May 22, 2010

Unarmed Gunman said:
Somehow I don't think that's what he meant.

Yea this.

This doesn't stop here... They defaced one of my sites!

Own3d by T3eS ! ~

Nameservers and all files are still in place... seems like they just edited the wordpress template.

Here's their website: www.Alboraaq.com
and email: t3ys@hotmail.com

So pissed....

Thinking about adding their details to 4chan!

jmorris · May 22, 2010

www.Alboraaq.com is worse than meatspin! What was that!

http://www.google.com/search?sourceid=chrome&ie=UTF-8&q="t3ys@hotmail.com"
It seems he uses exploits on forums, websites that are readily available, gets the database, cracks the hashes and then uses those passwords to try to get into your e-mail, paypal, etc.

So, don't use the same password as on those types of sites, if you're really forgetful or lazy, use one password for all websites you don't care about, and then different passwords for your important logins.

Stefan Johne · May 23, 2010

That was me! But I was quite not statisfied with the amount of money I could "lend" from you so the next time please provide at least $1000.

Thanks,
The Management

Sharksfan · May 24, 2010

totesmagotes said:
Or just pay paypal the $5 and get one of the 5 digit security code login devices.

+rep - I was unaware of this for some reason. Funny since I use those tags a lot for IT security.

Just signed up...

donbosco001 · May 25, 2010

Change password every 2 weeks for security reasons.

tahersaid · May 26, 2010

change your password to protect your account. mine was stolen too

Search

Search

Someone tried hacking into my Paypal

.Hack

New member

Taraqil

New member

Unarmed Gunman

Medium Pimpin'

taktikz

WF Veteran

jmorris

New member

Stefan Johne

I am a banana

Sharksfan

New member

donbosco001

New member

tahersaid

Banned