1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My VPS got hacked. WTF

Discussion in 'BlackHat Lounge' started by ORM, Feb 10, 2014.

  1. ORM

    ORM Power Member

    Joined:
    Oct 16, 2013
    Messages:
    716
    Likes Received:
    675
    Location:
    wealth mastery
    Just logged to my windows VPS and was like wtf?! :O It was running imacros script on somebody's AMF account with +20k points. Feel free to pm me your links, I do not need these points. (it will be a little giveaway to 4 Jr Vip/Donor members). VPS was purchased here on BHW from reputable member, antivirus does not show any spyware alerts. Any tips of how to prevent the same **** happening in the future?
     
  2. Zeecho

    Zeecho Junior Member

    Joined:
    Apr 15, 2010
    Messages:
    140
    Likes Received:
    36
    Location:
    USA
    Sharing is caring in BHW world hahaha.
     
  3. virtualpurity

    virtualpurity Jr. VIP Jr. VIP

    Joined:
    Nov 12, 2012
    Messages:
    464
    Likes Received:
    252
    Occupation:
    SEO, Hosting
    Location:
    /root
    Home Page:
    Sorry for your lose.. But look on the bright side you got 20K AMF points which i would be glad to take some of your hands.. :)

    And for future references dont save your passwords in a file, done safe your passwords in your browser use different passwords for different places etc.. If its the hosting fault that the VPS got hacked than there is nothing you could have done about it.
     
  4. ORM

    ORM Power Member

    Joined:
    Oct 16, 2013
    Messages:
    716
    Likes Received:
    675
    Location:
    wealth mastery
    Will contact service provider to inform them about it. 5k points goes for you. Let me know how you want to spend it
     
  5. HerpDerpSlerp

    HerpDerpSlerp Power Member

    Joined:
    Mar 19, 2013
    Messages:
    778
    Likes Received:
    623
    as long as you were not running root just blow out the user account and create a new one.
     
    • Thanks Thanks x 1
  6. evilclown

    evilclown Senior Member

    Joined:
    Jul 31, 2012
    Messages:
    805
    Likes Received:
    575
    Occupation:
    Party Clown
    Location:
    Clownville
    That's why you never buy shared stuff and you always have good strong passwords.
     
  7. ORM

    ORM Power Member

    Joined:
    Oct 16, 2013
    Messages:
    716
    Likes Received:
    675
    Location:
    wealth mastery
    It was not a shared VPS.
     
  8. evilclown

    evilclown Senior Member

    Joined:
    Jul 31, 2012
    Messages:
    805
    Likes Received:
    575
    Occupation:
    Party Clown
    Location:
    Clownville
    Was just saying to avoid share and always have strong password. Don't want to remember them passwords? Get LastPass.
     
  9. Tosmekop

    Tosmekop Supreme Member

    Joined:
    Oct 24, 2011
    Messages:
    1,208
    Likes Received:
    815
    I personally don't like using applications to remember my passwords for me, unless the software is C++/Delphi, and open-source, so I can understand exactly what's inside. I typically email passwords to myself, or create long, folder mazes, on my computer, where at the end of the maze, holds the text document of passwords.
     
  10. moonlifeonearth

    moonlifeonearth Newbie

    Joined:
    Feb 5, 2014
    Messages:
    2
    Likes Received:
    0
    Home Page:
    You must have Jr. VIP or Donor status to post a blog

    When can I be? Any rules?


     
  11. ORM

    ORM Power Member

    Joined:
    Oct 16, 2013
    Messages:
    716
    Likes Received:
    675
    Location:
    wealth mastery
    Giveaway is to 3 more Jr. vips/donors only, sorry
     
  12. JustUs

    JustUs Power Member

    Joined:
    May 6, 2012
    Messages:
    609
    Likes Received:
    452
    You lose a lot of experience in hacking Windows boxes that way.

    Sorry, your loss as to my ideas of how you were hacked. After all, there are several IIS, Parallels, Xen, etc. hacks.