Quote:
Originally Posted by anexsia
...just take a look at their forum for removal requests...
|
Removal requests? Hmm. Sounds like some companies are a bit pissed then? Maybe worried? Got busted?
Listen, MALICIOUS CODE is
malicious code. End of subject. There is no going around that. There is no defense against it. If you aren't playing by the rules, and exploits are shown, You. Are. Fucked. By the Engines, by Anti-Virus companies, Exploit companies, etc.
It's been done since the earliest of days here. Anyone remember how it was in 1994, 95, 96, 97? Some of us here have been there, done that. If you don't play by the rules, you are fucked. That goes for Mainstream as well as Adult. Hosts included. You don't think your own HOST might be the culprit? And you become the victim? Or maybe you're running a Wordpress backend? Which I know Eric, Sly, et al. know completely about since the inception of GFY on VB. It. Is. A. Never. Ending. Battle. Always was, still is.
Either way, it doesn't matter, whether it be custom built, or custom tweaked, malicious code is still malicious code.
If you had Admin access to the server on the serverside, you don't see how powerful that position is? It might not be the client, some times it's the Host too. All possibilities remain. Think about that.
The problem is, Adult is the spread of this kind of shit. Remember a very famous multi-million dollar company that was exposed for spreading intentional malware, and caught in public some years ago? Notice the word 'intentional..."
I'd like to think ppl in this biz are on the up-and-up, but it's just not that way.
Mainstream is infected yes. But Adult is infected uber-times the amount of sites online at any given moment. And it SHOULD be a DAILY check for anyone running a fucking Sponsor program online raking in hundreds of thousands of dollars all the time.
When we posted about MoneyCult (not to mention the YNOT Virus that was the initial point of the posts)- here a while back about the same thing, those motherfuckers had that shit fixed in a matter of a day or two - maybe hours) - even though they did not respond to the thread - and that's fucking respectful. They at least realized that they MAY HAVE BEEN COMPROMISED. And my fucking hat goes off to them. THAT was cool. MoneyCult was compromised in a motherfucking --> SUB-folder, not Root. And no one knew. And, it was taken care of ASAP after posting here, even though we had gone to great lengths to contact them, the shit was still fixed. Same with YNOT. Shit. Got. Done. ASAP.
With that said, I don't want to see bullshit flying around about "yeah, well what about this, and what about that.."
Fuck that bullshit. Wake up you newbie idiots and smell the Internet for all the disease it is. And that's why it's a shame that Amakings has had auto-pilot on for over 2 fucking years and let this kind of shit happen.
.PS- I'm the one who called out the Home Depot hack 2 fucking months before it made national news. I kept telling them - almost begging them - to get in touch with regional management, but the two heads of their dept. wouldn't listen. (...and yes, I have proof - Skype me: riklear and I'll give you the names and fucking phone number to call at HD).
Amakings needs to get off the money train and auto pilot and check their servers so that all of you are not constantly infected with "...malicious code" <--- Read: "Mal-I-Cious Code.".
Secure your shit or you will be on a forum somewhere crying.
Otherwise, blame the fucking Chinese who bot your backend 5 times a nanosecond.
Yes, I said nanosecond. Or don't you have alerts in ConficServer active. Whether it be a Unix backend, CloudLinux or whatever the fuck you're running - you should stay in touch with your server every day.
When was the last time you updated your Kernel? Did you know that there are extreme PHP security updates just days ago by NIST? Did you upgrade your Apache last week for those updates?
Morons.
PS - Those updates will BREAK your WP installs by-the-fucking-way.
Newbies, and veterans alike, need to get on the band wagon and step it up a notch. Whether it be Russia, China, Ukraine or some schmuck sitting his grandma's basement - stay up on shit and GET YOUR SHIT TOGETHER!
.
And on a side note, I'd LOVE to hear the horror stories with the GFY crew about ALL of the hacks they've come across over the long years. Ever think about that ya' all?
I'm sure they could tell stories about their servers and the attacks they've had that would fill an entire forum.
P-fucking-S-S: Don't come back with bullshit responses, this is about Amakings and their sub-sites giving us Malware warnings for about 2 years now. Only 'constructive' adult security-minded conversation please. Otherwise, I'll pounce on your ass like a kitten looking for a mouse in a bail of hay.
.