A database of HVA database is posted online for sale samples.(Screenshots)
HVA was sold for data for $ 1700
The long-standing and well-known local hacker association forum has been taken away from the entire database and sold online. The event stirred up the online community while the HVA Board of Directors was looking for ways to save the situation.
The incident started from dawn on May 1, the time was considered quite sensitive when most people during the long holiday season, HVA forum was attacked by a group of hackers using IPB error 2.x and Use the network attack tool milw00rm to corrupt the entire database (database).
"The problem is that HVA set the backup script mode to save 7 copies for 7 days. On the 8th day, it deleted all the old versions and started over from the beginning," a board member HVA said sadly. " The attacker of the hacker group Vniss took advantage of this, at the same time carefully calculated the choice of attack time. And when our people found out, logging into the server was too late. The database was destroyed. breaking ".
According to the core of HVA, after the time of heavy and continuous denial of service (DDoS) attack, the server and website (forum) of this forum had to be configured, adjusted, Install additional security utilities. But due to limited budget, the system upgrade process is not completed. That is one of the factors that makes hackers of Vniss successfully penetrate into the system. Currently, access to hvaonline.net, people only see the message that the forum is down. The board of directors of this hackers also posted on the members' websites close to the member's error: " We sincerely apologize to the members and the security community for being reckless in system security. The administrator will quickly find a way to fix the problem to get the server - forum into operation soon . "
Hvaonline.net homepage at 09h15 on May 4 (Screenshot)
However, half a day after losing the data, the HVA Board of Management received an apologetic e-mail from the "vandal" nickname of hackernohat. The letter said: " Sorry for the opportunity for the black hat hacker to hack HVA. I sincerely apologize because after I infiltrated your server, I brought the image I hacked HVA to a friend. This person posted it on VnISS + forum, so they relied on it to detect the error of your forum software.I had an IPB error that I used to hack HVA is Invision Power Board Func_msg.PHP SQL Injection Vulnerability (securityfocus.com/ bid / 17719) "
The person bearing the nickname hackernohat also posted a "show off" hack on HVA to Vniss but then this post was moved to the deleted folder of the forum. Meanwhile, around 19:30 on 2/5, on ddth.com appeared "shocking" ads to sell the entire article of HVA forum and 70,000 e-mail members with encrypted passwords and sealed boxes of the Board of Management . for $ 1,700.
However, the act of Bill house nick who posted this ad has not received the approval of many netizens. Most members of ddth.com expressed disgrace. Nick Samba8000 bluntly stated: "Although Bill has acquired some illegal intrusion techniques, he should not use it to crawl into a Vietnamese website. In this way, he also sells these. the flaw of the HVA is not the action of a military man, not worthy of being male . "
Hackers with hero_zero nicknames surmise that Vniss wants to pass this to regain their fame and prove their return to "good form" after a long silence. " The sale of HVA data on ddth.com made netizens very interested and of course Vniss did not ignore the purpose of defaming this forum reputation ", hero_zero said.
If hackers who specialize in DDoS DantruongX are recently "caught" by the majority of the online community, public acts of provocative, fighting each other between underground organizations of the virtual world are taken up by hackers themselves. rebuttal. " The punishment of each other creates conflicts that are difficult to reconcile and consequently the loss of prestige, honor, effort and money of the investment for the forum. And the participants will lack an exchange place. learn ", hacker carries hero_zero nick. " If you keep fighting each other, it is difficult for any forum to survive and develop ."
There is an opinion that, in order for informatics forums to be really a healthy and rewarding playground and to stop fighting, proving that it is necessary to have a handshake among the admin. " More than ever, we hope to have an organization calling for forum administrators to sit together and direct members, " hero_zero said.
"The law cannot prevent or stop fighting between forums, but it must be compromised by the hacker community ," said a member of a hacker group whose nick is Wilsoninlove. " There should be a unified hacker association in Vietnam, bringing together hacker groups to work for the benefit of the IT community ".
Song Hang
- NASA liquidates data storage machines 'sensitive'
- Allway Sync 5.5.8 - Data synchronization is too easy
- 88 million copies of Vista have been sold
- 90% of the world's data has been created over the past 2 years
- Method of converting magnetic data to optics
- Six ways to prevent data leakage
- SQL Server 2005 - Next generation data analysis and management software
- Sold out the first 100,000 HD DVD players
- Nintendo sold 600,000 Wii sets after more than a week
- New breakthroughs turn DNA into a data bank
- Acer sold the PC with a security error
- The amount of world data created every day