Difficulty accessing Amibay, Alerts.

  • Thread starter Thread starter ratfink
  • Start date Start date
  • Replies Replies 89
  • Views Views 2672
I'm using my phone to connect to mobile Amibay, I can't get online from the pc's same error you report...
Mozilla/5.0 (Linux; U; Android 2.3.5; en-gb; HTC_DesireHD Build/GRJ90) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1
 
I pasted from the clipboard in to my post and it came out as a mess, so edited my post and put the picture in ...... strange that it didn't like it pasted straight from the clipboard (even though it displayed properly in the quick reply box)
 
Strange that my Avast, Malwarebytes or ZoneAlarm doesn't ring any bells. Just gives that weird cookie message.
 
We are having threads from members about this subject pop up all over the place. Can everyone discuss the issue in this thread to save us having them all over the place.
When I find threads I am moving them all here.
The problem is being worked on by Harrison as we speak, although he has just had a new baby, so it may take a few days to sort out.
Please bear with us and thanks for your patience.
 
I use Norton AntiVirus (with rootkit support), never had a virus in 10 years.
It stops everything, :).

The index is being attacked by another dodgy code now.
Well different from lastnight anyway.
 
It won't be until at least this afternoon before I can start removing it.

This injection attack seems quite complex compared to most site hijacking automated scripts.

Lots of sites are getting hacked in recent days, and not just vBulletin, but also WordPress, Joomla, and lots of others including popular ecommerce sites.

No one has yet worked out how they are gaining access, but some think it is gaining access from an admin account loggin. Then uploading a load of files in a buried location on the server by installing bogus plugins on the forum or cms software that then uploads their files.

These files contain a JavaScript based malware payload (not Java), so ensure you have a way to control JavaScript running per site.

In addition the attack injects a line of PHP code to the top of every php file on the site. So when anything accessed an injected/infected script the hash included in the injected code translates into a redirect to the hidden payload files to run the malware, and then redirects to a random domain holding page.
 
Harrison said:
It won't be until at least this afternoon before I can start removing it.

This injection attack seems quite complex compared to most site hijacking automated scripts.

Lots of sites are getting hacked in recent days, and not just vBulletin, but also WordPress, Joomla, and lots of others including popular ecommerce sites.

No one has yet worked out how they are gaining access, but some think it is gaining access from an admin account loggin. Then uploading a load of files in a buried location on the server by installing bogus plugins on the forum or cms software that then uploads their files.

These files contain a JavaScript based malware payload (not Java), so ensure you have a way to control JavaScript running per site.

In addition the attack injects a line of PHP code to the top of every php file on the site. So when anything accessed an injected/infected script the hash included in the injected code translates into a redirect to the hidden payload files to run the malware, and then redirects to a random domain holding page.
Click to expand...

Had this happen to ultimateamiga last nov'ish.
It was a pain, I ended up having to convert db to the updated forum software, took about a week to fix.
Luckly smf has a check script that details all modified files.

It wasnt so much the one attack but two working together.

You want to watch google, as they will block the site and its a pain to get it unblocked, took me 2 weeks to get them to unblock it from google searchs.
 
I get the same wrong thing.
Deleting the link, rewrite the adress and averythings OK.
 
amibay website doesn't load properly

amibay website doesn't load properly

Hello All, I am having a real weird problem. when I try to load
amibay.com i get a weird error then i am redirected to some
domain name website.

tom
 
Amibay site, what's going on?!?!

Amibay site, what's going on?!?!

I can access this site from iPhone but not Firefox, Chrome or Safari on 'proper' computer, Amiga.org is saying youve been hacked and people are etting viruses when they can visit?!?!

Admin, please clarify?!?
 
Hello Tom,

Sadly a lot of sites have been targeted over the last few days - those that are running VB forum / Joomla and other CMS systems

The attack was at a site root level and has modified some of the templates of the site (namely the index.html) and injects a small line of code that uses a Jscript redirect to the place you were sent.

Please be advised my friend that this site attempts to install MalWare onto ones Windows PC.

Please check your system, and ensure that your JavaScript settings are secure.
 
Hello ipod_sock,

Sadly a lot of sites have been targeted over the last few days - those that are running VB forum / Joomla and other CMS systems

The attack was at a site root level and has modified some of the templates of the site (namely the index.html) and injects a small line of code that uses a Jscript redirect to the place you were sent.

Please be advised my friend that this site attempts to install MalWare onto ones Windows PC.

Please check your system, and ensure that your JavaScript settings are secure.
 
ipod_sock said:
I can access this site from iPhone but not Firefox, Chrome or Safari on 'proper' computer, Amiga.org is saying youve been hacked and people are etting viruses when they can visit?!?!

Admin, please clarify?!?
Click to expand...

Lol the same here, my avg antivirus is blocking amibay.com for two
days now :-)
but via iphone it works i can confirme that :-)
 
Tom, it is the home page that is being difficult. If you google Amibay and then click on one of the forum links you'll be straight in.
 
You must log in or register to reply here.
Back
Top Bottom