AAHHHH!!!! Hacked by Brandon??!

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

Hey,

This is going to sound odd, but what is going on..

www.certforums.com and www.certforums.co.uk currently direct to a hacked by Brandon site?!!

Huh??!

 

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

Gav knows about it and I can only assume he's working with Si and the webhost to fix the problem. Hang tight.

 

I took the liberty of using dnsstuff.com:


Properties from the image:
http://www.eglenceparki.net/dost/brandonn.jpg

The Data in OnlineNIC's WHOIS database is provided by OnlineNIC
for information purposes, and to assist persons in obtaining
information about or related to a domain name registration record.
OnlineNIC does not guarantee its accuracy. By starting a WHOIS
query, you agree that you will use this Data only for lawful
purposes and that, under no circumstances will you use this Data
to:
(1)allow, enable, or otherwise support the transmission of mass
unsolicited,commercial advertising or solicitations via e-mail(spam).
(2)enable high volume,automated, electronic processes that apply
to OnlineNIC Inc.(or its systems).

OnlineNIC reserves the right to modify these terms at any time.
By starting this query, you agree to abide by this policy.


Registrant:
ozgur kuru [email protected] +90.3123588706
maaroni.net
kaya sok
ankara,ankara,TURKEY 06310


Domain Name:eglenceparki.net
Record last updated at 2005-08-05 07:32:51
Record created on 2005/8/5
Record expired on 2006/8/5


Domain servers in listed order:
ns1.maaroni.net ns2.maaroni.net

Administrator:
kaya sok
ankara
ankara,
TURKEY
06310

name: ( ozgur kuru )
mail: ( [email protected] ) +90.3123588706
maaroni.net
Technical Contactor:
kaya sok
ankara
ankara,
TURKEY
06310

name: ( ozgur kuru )
mail: ( [email protected] ) +90.3123588706
maaroni.net
Billing Contactor:
kaya sok
ankara
ankara,
TURKEY
06310

name: ( ozgur kuru )
mail: ( [email protected] ) +90.3123588706
maaroni.net

Registration Service Provider:
name: RemoteMach Internet Solutions
tel: +9.02124257543
fax: +9.02124257543
web:http://www.remotemach.com

 

This is probably going to sound really silly.... but are our details safe?!

I am guessing this is simply some kind of web server name based attack rather than an actual we have entered your server attack?

 

Hey just managed to visit . DAMMM WHAT AM I GOING TO DO FOR TIME

 

Until we find out the extent of the attack we simply don't know. As for what type of attack it was well, it abviously hasn't gone too deep into the site as we're still here!

If you Google "hacked by Brandon" you will notice that he has done this sort of thing before, and that he bascially defaces the Home Page.

Just hang in there guy's. It will get sorted as soon as possible.

 

for a more ... ahum ... "official" ... list of brandons endeavors check the link i posted here: http://certforums.co.uk/forums/showthread.php?p=82705#post82705

 

I was shocked when I saw this!! I thought what has happened? I actually thought my machine had been hacked so I tried other websites and they were fine!! Whoever this Brandon is needs some serious a$$ whooping!!! who's with me?

EDIT: Erm why is this in the training and development forum?

 

What a complete tosser!

 

So we all learn that it is bad when we get hacked!

 

hehe nice one Si...didnt think of it like that

 

This Brandon dude needs a serious kick in the nuts!

 

the site was down for 10 hours or so and we all lost it... what would we do without this place..

 

looks like a DNS poison attack at first glance based on the whois details i took last night
nothing too complicated about that, not a true hack so to speak of, no access of our sysytems was garnered, its just a form of denial of service by pointing the names at a different IP

could be wrong, havnt had a change to sit down with the guys and have a chat about it, and i didnt have that much oppertunity to look into it before it was sorted
thats my initial hunch though

 

OK so the site wasnt "Hacked" in any real sense from the looks of it, just a redirection via IP. But what do you do when this sort of thing happens? Who do you report it to? would any action be taken against the hacker? or would you retailate back (like im sure some on here are capable of) and give the guy a taste of his own medicene?