Sorry your browser is not supported!

You are using an outdated browser that does not support modern web technologies, in order to use this site please update to a new browser.

Browsers supported include Chrome, FireFox, Safari, Opera, Internet Explorer 10+ or Microsoft Edge.

Geek Culture / It's a busy night for hackers...

Author
Message
IanM
Retired Moderator
22
Years of Service
User Offline
Joined: 11th Sep 2002
Location: In my moon base
Posted: 31st Jul 2003 23:33
Link
In the last 30 minutes, I've have had 35 alerts from my firewall for the subseven backdoor trojan port ... all from different IP addresses, but mostly 217.x.x.x

Normally I get just a few hits per week.

Oops, there it goes again.
Back to top
Profile PM Email Website
John H
Retired Moderator
22
Years of Service
User Offline
Joined: 14th Oct 2002
Location: Burlington, VT
Posted: 31st Jul 2003 23:42
Link
Someone is interested in your Ian IMHO Firewalls just call hackers

RPGamer

Current Project: Eternal Destiny
Porting all files to my new computer
Back to top
Profile PM
MrTAToad
22
Years of Service
User Offline
Joined: 26th Aug 2002
Location: United Kingdom
Posted: 31st Jul 2003 23:45
Link
Get a ADSL router...


Its better than a poke in the eye...
Back to top
Profile PM Email Website
IanM
Retired Moderator
22
Years of Service
User Offline
Joined: 11th Sep 2002
Location: In my moon base
Posted: 31st Jul 2003 23:57
Link
I can't see any reason for all these machines to target me ... except maybe as a stepping stone to someone else.

I wonder whether there's a big DOS attack being planned
Back to top
Profile PM Email Website
MrTAToad
22
Years of Service
User Offline
Joined: 26th Aug 2002
Location: United Kingdom
Posted: 1st Aug 2003 00:32
Link
Wouldn't be surprised...


Its better than a poke in the eye...
Back to top
Profile PM Email Website
Eddie Gordo
21
Years of Service
User Offline
Joined: 14th Jan 2003
Location: Ohio - USA
Posted: 1st Aug 2003 00:35 Edited at: 1st Aug 2003 00:35
Link
Honestly...um...well...i have not heard anything...and St0ic is probly the most informed White-Hat on these situations...

Visual Programming Studio ORANGE
Replacement IDE for Dark Basic Professional...
(Will Be Availeable When This is Removed)
Back to top
Profile PM Email
Preston C
21
Years of Service
User Offline
Joined: 16th May 2003
Location: Penn State University Park
Posted: 1st Aug 2003 00:50
Link
I've Had a good 40 this morning alone! PEOPLE WANT TO DESTROY MY COMPUTER, I SWEAR!

[url="http://www.neowolfgames.tk"][/url]
Back to top
Profile PM Email
vivi
21
Years of Service
User Offline
Joined: 28th Nov 2002
Location: United Kingdom
Posted: 1st Aug 2003 00:58
Link
"subseven"

Is that a trojan creation tool? I think I have it on my PC somewhere?

SharkSOFT.
http://www.sharksoftware.co.uk
Back to top
Profile PM Website
8truths
21
Years of Service
User Offline
Joined: 10th May 2003
Location: United States
Posted: 1st Aug 2003 01:46
Link
Sub7 is hacking smorgess (sp?) board.

It can be used to deploy just about anything once its on a machine.

I knew a guy in town who used to put it on the computers he sold (he ended upo with a visit from several insurance companies and MS, and no longer is allowed to ever sell computers, or he'll go to a place where you don't what o be computer guy in the room). What he did was install it to cut the legs out of off-warranty machines. Thus, it would drum up business.

It can become a sort of hacking server, allowing you to use the infected machine to conduct subsequent attacks.

We can't stop here! This is bat country!
Back to top
Profile PM
Ian T
22
Years of Service
User Offline
Joined: 12th Sep 2002
Location: Around
Posted: 1st Aug 2003 02:45
Link
That's pretty dirty... almost as bad as my video card being stolen right out of my box before it was handed to me

--Mouse

Famous Fighting Furball
Back to top
Profile PM
8truths
21
Years of Service
User Offline
Joined: 10th May 2003
Location: United States
Posted: 1st Aug 2003 08:51
Link
Mouse! How the hell did that happen!? Do tell... I love slight of hand tricks, and am always interested in learning more.

Ante up. Pen & Teller time, man.

We can't stop here! This is bat country!
Back to top
Profile PM
8truths
21
Years of Service
User Offline
Joined: 10th May 2003
Location: United States
Posted: 1st Aug 2003 08:57
Link
Ian -- is it possible your ISP was scanning for vulnerabilities?

Some of the automated port security probes out there will just run down a list of IP addresses and probe them for a specific port common to an attack (like the NetBIOS share folder steal).

Right now, since the US gov't squacked to MS about the Remote Procedure Call, a lot of ISPs are scrambling to get their users patched.

Of course, the RPC bug is hilarious, because everyone and their brother knew it was waiting to happen -- God, I said it the first time I heard the name!

We wait how many years before the US gov't wakes up to it . . . ?!?!

We can't stop here! This is bat country!
Back to top
Profile PM
IanM
Retired Moderator
22
Years of Service
User Offline
Joined: 11th Sep 2002
Location: In my moon base
Posted: 1st Aug 2003 11:10
Link
If my ISP was scanning, they would do it from their own network, from a small range of easily identifiable machines, and they would let their users know.

These scans came from all over the place. I might try and trace a few today to see where they came from.
Back to top
Profile PM Email Website
Shadow Robert
22
Years of Service
User Offline
Joined: 22nd Sep 2002
Location: Hertfordshire, England
Posted: 1st Aug 2003 11:57
Link
I wouldn't worry really ... you should setup a single machine which serves the rest even if its just a dt machine.

thats what i've done, people can't seem to deploy virus / hacks even through the firewall on your original machine if its networked.
$20 got me peice of mind - if the server machine is a Linux build, they're generally not targetted by script kiddies.
Makes the whole affair pretty secure.

Back to top
Profile PM Email Website
Dave J
Retired Moderator
21
Years of Service
User Offline
Joined: 11th Feb 2003
Location: Secret Military Pub, Down Under
Posted: 1st Aug 2003 12:07
Link
Yeah, I've setup a fairly secure Linux Server which is connected to cable 24/7, then I just connect to the net through the LAN and barely anything can touch my PC.

"Computers are useless they can only give you answers."
Back to top
Profile PM Email
Ian T
22
Years of Service
User Offline
Joined: 12th Sep 2002
Location: Around
Posted: 1st Aug 2003 19:56
Link
I don't know how it happened exactly, but somewhere inbetween HP manufacturing it and Circut City handing it to me, the GF2 was replaced with a shoddily installed TNT card.

--Mouse

Famous Fighting Furball
Back to top
Profile PM
Back to top

Login to post a reply

Server time is: 2024-11-23 14:07:53
Your offset time is: 2024-11-23 14:07:53