1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My website is hacked by Bangladesh Cyber Army

Discussion in 'Black Hat SEO' started by santhej, Jan 14, 2013.

  1. santhej

    santhej Jr. VIP Jr. VIP

    Joined:
    May 26, 2010
    Messages:
    544
    Likes Received:
    170
    Gender:
    Male
    Occupation:
    Virtual Assistant Provider
    Location:
    Derby
    Home Page:
    My website busmatterz.com is hacked by some Bangladesh Cyber Army.A quick google search showed me that they are a famous hacking group and they have hacked over 3000 indian websites as a part of their protest against India.My hosting provider said that the backup is also affected..is there someway I can recover the posts in my site.My site is running vbulletin 4.2
     
  2. Gogol

    Gogol Elite Member

    Joined:
    Sep 10, 2010
    Messages:
    3,063
    Likes Received:
    2,872
    Gender:
    Male
    Go to your phpmyadmin and backup your db. I guess that was a RFI attack... do you use any uploading scripts in your server?
     
  3. santhej

    santhej Jr. VIP Jr. VIP

    Joined:
    May 26, 2010
    Messages:
    544
    Likes Received:
    170
    Gender:
    Male
    Occupation:
    Virtual Assistant Provider
    Location:
    Derby
    Home Page:
    dude my database is already affected....i can access the database...but my hosting provider says that the database is fully affected..even the backup copy they have is effected...yes the users can upload images in my site
     
  4. Gogol

    Gogol Elite Member

    Joined:
    Sep 10, 2010
    Messages:
    3,063
    Likes Received:
    2,872
    Gender:
    Male
    Are you using uploadify? If you do, STOP USING IT NOW!
    Btw, even if your db is affected, check your content table if it is intact....
     
  5. healzer

    healzer Jr. Executive VIP Jr. VIP Premium Member

    Joined:
    Jun 26, 2011
    Messages:
    2,364
    Likes Received:
    1,966
    Gender:
    Male
    Occupation:
    Marketing automation tools
    Location:
    Somewhere in Europe
    Home Page:
    unless they deleted your whole database manually (or all the records)
    you can still extract your database (prolly needs a fix).

    well ehm, contact some expert I guess if you can't do it yourself...
    as said above: phpmyadmin

    otherwise there is no way, unless:
    use google cached versions (time machine or w/e)
    copy all the pages/posts/images stored by Google & then re-build your whole site :)
     
  6. ascura

    ascura Junior Member

    Joined:
    Mar 1, 2011
    Messages:
    132
    Likes Received:
    38
    Few of my sites also hacked by them, wp sites.
    They're on different hosting services.
    Yes, the DB is also affected, but luckily I have offline backup (bit old but still helps)
    Sorry can't help your case, hope you can solve it.
     
  7. LeMerovigian

    LeMerovigian BANNED BANNED

    Joined:
    Jun 28, 2012
    Messages:
    186
    Likes Received:
    64
    Read this; 5k affected not the only one!

    http://news.softpedia.com/news/5-000-Sites-Defaced-by-Bangladesh-Cyber-Army-to-Protest-Against-Indian-Border-Force-299162.shtml


    Bangladesh%u00252BMother.jpg
     
  8. LeMerovigian

    LeMerovigian BANNED BANNED

    Joined:
    Jun 28, 2012
    Messages:
    186
    Likes Received:
    64
    Does this mean Cricket is a better sport than Baseball?
     
    • Thanks Thanks x 1
  9. santhej

    santhej Jr. VIP Jr. VIP

    Joined:
    May 26, 2010
    Messages:
    544
    Likes Received:
    170
    Gender:
    Male
    Occupation:
    Virtual Assistant Provider
    Location:
    Derby
    Home Page:
    it was my fault that i didnt create a offline backup....what did this people gain by hacking websites small scale bussniness?even if they hack why are they destroying the whole website..and they say they are doing it for justice
     
  10. santhej

    santhej Jr. VIP Jr. VIP

    Joined:
    May 26, 2010
    Messages:
    544
    Likes Received:
    170
    Gender:
    Male
    Occupation:
    Virtual Assistant Provider
    Location:
    Derby
    Home Page:
  11. Gogol

    Gogol Elite Member

    Joined:
    Sep 10, 2010
    Messages:
    3,063
    Likes Received:
    2,872
    Gender:
    Male
    Lolz please follow these advices in future:

    1. Never give'em a way to upload anything on server.
    2. If you have to, check for not only the file mime type, but also the file extainsion and getimagesize ( if using php and uploading image).
    3. If you have image uploader inside admin, make sure no one gets to there without proper authentication.
    4. Make sure you prepare your SQL statements, especially when taking user inputs and querying the database on the input.


    No cyber army will ever be able to hack your site again, be it Bangladesh or Russia.
     
  12. Gogol

    Gogol Elite Member

    Joined:
    Sep 10, 2010
    Messages:
    3,063
    Likes Received:
    2,872
    Gender:
    Male
    No self boasting but i can do it hehe :D :D