[Coco] [Color Computer] CoCo3.com hacked... questions.
operator at coco3.com
Sat Nov 24 18:45:41 EST 2007
At 09:44 PM 11/23/2007, you wrote:
>Were personal email addresses or passwords compromised in the attack?
I think what my host did, or the watchdog software, was lock
everything down after certain events were logged or while the
backdoor scripts were attempting to run. All of the site permissions
were disabled. I think the hacker may have accesssed a /etc/password
type of file in order to gain access to my control panel and manually
delete my e-mail accounts. I have since changed my own passwords and
removed the feature the hacker used to upload his evil scripts.
Btw, we all should make a good habit of changing our passwords, even
if coco3.com only uses accounts to help keep spammers out. The only
thing valuable a hacker would gain from the site is a bunch of
priceless CoCo information. There were no PayPal related passwords
anywhere on the site or server, so boo hoo to the hacker.
Nothing was really lost except 2+ days of uptime that I much needed.
More information about the Coco