The forum is hacked

[Statman]

Just posting this to let the admin know to fix the problem. There is an exploit through v-bull where the user gets re-directed to myfilestore after searching through and clicking on a google search of bluejaysmessageboard.com

[GD]

Nope. Not for me. Run your antivirus and try it again.

[Statman]

Nope. Not for me. Run your antivirus and try it again.

 

It won't happen every time. Once in 5 tries or so.

[Statman]

If you clear your cookies you will get it every time.

[Deadpool]

He is correct, the site is redirecting from a google search to the following link (which I provide for reference, there is no reason to click on it.):

 

http://myfilestore.com/download.php?id=f7b0f43d

 

It looks as though the file that it was trying to push has been deleted by myfilestore.com, but it also tries to pop up an ad, and you can't get here. I don't know this platform enough to suggest a fix, but I imagine there is one out there...

[John_Havok]

I blame North Korea

[L54]

O's fans must really be pissed.

[Governator]

I can't seem to duplicate this.

[Deadpool]

O's fans must really be pissed.

 

We should charge them $3 a month to try to hack the site...

[Governator]

How exactly are you bringing it up? I've tried firefox/ie/chrome, cleared cookies, searched for bluejaysmessageboard.com in google and can click through no problem on each, can also sign in.

[Chappy]

I messaged the admin, he can look into this whenever he has a chance.

[Angrioter]

I blame North Korea

 

Or Marlins message board.

[BTS]

Back to the Rays board?

[Captain Adama]

In the meantime just favourite the site directly so you don't have to click through Google?

[Art Vandelay]

It just happened for me, so I clicked back and tried again.

[KingKat]

I always just type in the URL. It's not like it's hard to remember.

[saskjayfan]

Back to the Rays board?

 

the three regular rays posters didn't take kindly to having the board taken over last time.

[admin]

Working on it. Happened with another forum of mine, it's a pain. Vbulletin who created the forum software never wants to admit it's their problem.

[admin]

Can you see if you can get it to do it again?

I disabled the chatbox thinking that might be the issue. I can't seem to get the problem to happen to me even when I clear cookies.

[jays4life19]

Can you see if you can get it to do it again?

I disabled the chatbox thinking that might be the issue. I can't seem to get the problem to happen to me even when I clear cookies.

 

Aw man. The chatbox is my favourite part of this site.

 

 

...said no one ever.

[Orgfiller]

In the meantime just favourite the site directly so you don't have to click through Google?

 

Speed Dial ftw.

[Statman]

Can you see if you can get it to do it again?

I disabled the chatbox thinking that might be the issue. I can't seem to get the problem to happen to me even when I clear cookies.

 

I tried a bunch of stuff on my android tablet and desktop and the re-direct doesn't seem to occur anymore on either. The forum seems very slow today though.

[admin]

Thanks. Let me know if it happens again. It's a sneaky thing and a pain in the ass.

[Statman]

Thanks. Let me know if it happens again. It's a sneaky thing and a pain in the ass.

 

It's happening again.

[walkoff93]

Thanks. Let me know if it happens again. It's a sneaky thing and a pain in the ass.

 

Just tried it...it's still happening.

[admin]

f***

[LongTimeReader]

The issue is described here as it appears to relate to a vulnerability in vbulletin

 

http://club.myce.com/f20/vbulletin-myfilestore-hack-find-traces-remove-them-332219/ <-- possible solution within first post

http://www.vbulletin.com/forum/forum/vbulletin-4/vbulletin-4-questions-problems-and-troubleshooting/389819-vbulletin-3-x-and-4-x-redirect-security-exploit

 

I didn't look in detail but appears there's an injection (SQL?) in the database and/or pluggins.... this one looks like a royal pain

[Deadpool]

The issue is described here as it appears to relate to a vulnerability in vbulletin

 

http://club.myce.com/f20/vbulletin-myfilestore-hack-find-traces-remove-them-332219/ <-- possible solution within first post

http://www.vbulletin.com/forum/forum/vbulletin-4/vbulletin-4-questions-problems-and-troubleshooting/389819-vbulletin-3-x-and-4-x-redirect-security-exploit

 

I didn't look in detail but appears there's an injection (SQL?) in the database and/or pluggins.... this one looks like a royal pain

 

That's some good sleuthing, the first link looks like a good resource...

[Spanky99]

I had this issue on my PC, but not the console, weird.

[Chappy]

Yeah the forum is incredibly slow now.