[Coco] [Color Computer] CoCo3.com hacked... questions.

Roger Taylor operator at coco3.com
Sat Nov 24 18:45:41 EST 2007

At 09:44 PM 11/23/2007, you wrote:
>Were personal email addresses or passwords compromised in the attack?

I think what my host did, or the watchdog software, was lock 
everything down after certain events were logged or while the 
backdoor scripts were attempting to run.  All of the site permissions 
were disabled.  I think the hacker may have accesssed a /etc/password 
type of file in order to gain access to my control panel and manually 
delete my e-mail accounts.  I have since changed my own passwords and 
removed the feature the hacker used to upload his evil scripts.

Btw, we all should make a good habit of changing our passwords, even 
if coco3.com only uses accounts to help keep spammers out.   The only 
thing valuable a hacker would gain from the site is a bunch of 
priceless CoCo information.  There were no PayPal related passwords 
anywhere on the site or server, so boo hoo to the hacker.

Nothing was really lost except 2+ days of uptime that I much needed.

More information about the Coco mailing list