1. New to Christmas lighting? Get started with the AusChristmasLighting 101 Manual:
    auschristmaslighting.com/wiki/AusChristmasLighting-101

ACL Server Compromised 27/09/2012 - Action Recommended

Discussion in 'Announcements' started by ryanschristmaslights, Sep 27, 2012.

  1. ryanschristmaslights

    ryanschristmaslights Senior Elf Administrator Generous Elf

    Joined:
    Jun 30, 2010
    Messages:
    564
    Likes Received:
    76
    Location:
    Adelaide, Australia
    Find Me On:
    It has come to my attention that early this morning, September 27 2012, the server that AusChristmasLighting is hosted on has been compromised. A third party has gained access to the file system of ACL to then modify JavaScript files that loads hidden frames to external websites. These external websites linked to as a result of the hacking have a chance of being malicious so it is recommended to run an antivirus scan.

    These file modifications affected all areas of ACL - the forums, wiki, chat and video page. It was very much a "personalised" line of attack with separate files edited for each area of ACL. The entire site of ACL has been reviewed and all known malicious code has been removed.

    ACL security details have all been changed. It should be noted that user account details are not stored on the file system where the malicious file edits occured and passwords are encrypted before being stored.

    The web host has been notified of the server breach and technicians are investigating possible causes of the breach. FTP logs have been reviewed but provide no clues. Investigations are continuing.


    What Should You Do?
    It would be recommended for anyone who accessed ACL within the past 24 hours to refresh ACL pages (F5) to ensure the malicious code has not been cached on your computer. It is also recommended to run an antivirus scan on your computer, but this is just a precautionary measure. I do not know if the external sites were malicious but in the interests of security it is a good idea to assume they were. If you have not visited ACL in the past 24 hours then there should not be any cause for concern.

    I would also recommend, for users of Mozilla Firefox, to consider running the NoScript addon. It is free and selectively allows you to "turn on" javascript code on a per-website (domain) basis. You will find this plugin at noscript.net - it is a great way to make web surfing safer. Not only that but it blocks some of the online advertising firms from tracking your computer too! I have personally used the addon for a long time as I value the added security it provides.


    [attachimg=1]
     

    Attached Files:

  2. fasteddy

    fasteddy I have C.L.A.P Global Moderator Generous Elf

    Joined:
    Apr 26, 2010
    Messages:
    6,500
    Likes Received:
    22
    Location:
    Albion Park NSW
    Find Me On:
    I did a scan and it came up with nothing so all good this end.
     
  3. fasteddy

    fasteddy I have C.L.A.P Global Moderator Generous Elf

    Joined:
    Apr 26, 2010
    Messages:
    6,500
    Likes Received:
    22
    Location:
    Albion Park NSW
    Find Me On:
    I would like to thank Ryan for his quick response and efforts to fix this attack and make the website available again.

    Thanks it is appreciated by all
     

Share This Page