Potential future phishing/hack attempt warning

2008-10-05 19:09:52

A forum I'm on called rllmukforum that got attacked this weekend by someone who phished the admin password via PM by using a link to the similar-looking http://rllnukforum.com domain - they then used the admin control panel to add a script that redirected to their site to steal other people's passwords and later used JavaScript to grab passwords from the on-site login box. From that point they started crapflooding the site with embedded shock images and, once image embedding was disabled, created lots of inflammatory threads using other people's accounts.

In case your wondering what this has to do with Hydrogenaudio: one of the domains they used in the attack was http://hydragenaudio.org (note the "a") - so consider this a heads up that they may try and do the same thing here in the future if they haven't already.

Edit: Just noticed there's a fake login page at http://hydragen audio.org/forums/ (remove the space to view, BUT DON'T LOG IN - it's a phishing site)

Potential future phishing/hack attempt warning

Reply #1 – 2008-10-05 23:46:05

thanks for that, that hydragen audio site is convincing, its even using java scripts from the real hydrogenaudio site, plus its own scripts

Potential future phishing/hack attempt warning

Reply #2 – 2008-10-06 00:06:52

Nasty! I sure am glad that I only use Opera Wand to login to sites.  AFAIK there's no possibilities to fool that... right? (wrong website url)

Potential future phishing/hack attempt warning

Reply #3 – 2008-10-06 02:03:54

If you are using Firefox, I would recommend the PasswordMaker plugin. It is also based on the site URL.

Potential future phishing/hack attempt warning

Reply #4 – 2008-10-06 02:50:59

i actually use the "remember me" stuff on here (should probably get something better), but it obviously didn't manage to read it