|
Topic Originator: onandupthepars
Date: Sun 30 Jun 19:03
I had messages yesterday from my anti-virus telling me of three SQL injection attacks from dafc.net
Need for action?
|
|
|
|
Topic Originator: widtink
Date: Sun 30 Jun 19:08
Can you supply details of what device you are working off... Android phone or computer etc..? And if this issue was on the website or the app.
If app are you aware there is an updated version made available by Milos last week?
Available in play store.
The more info you supply the easier it is for the tech team to understand and rectify the issue.
Thanks
Admin
|
|
|
|
Topic Originator: widtink
Date: Sun 30 Jun 19:13
Also would be handy if anyone else has had this issue that they notify us as well.
Admin
|
|
|
|
Topic Originator: brian
Date: Sun 30 Jun 20:10
Thanks for letting us know, will look into it
I have added Code recently to try and prevent hackers getting in, not sure if it is related
____________________
contact: email me
File Share: https://share2.co.uk
ParsTV: https://ParsTV.co.uk
|
|
|
|
Topic Originator: onandupthepars
Date: Sun 30 Jun 20:46
Hi
I only have an hp Notepad laptop, no other devices.
The attacks are shown as 2.21 - 2.22 pm yesterday when I was on the website.
These were blocked, so I assume my av has been good enough to deal with them - so far !
Is there anything I can do?
Post Edited (Sun 30 Jun 20:47)
|
|
|
|
Topic Originator: onandupthepars
Date: Mon 1 Jul 14:30
I've been on the forum twice today and had no further alerts. Danger passed?
|
|
|
|
Topic Originator: brian
Date: Mon 1 Jul 15:38
do you have any further information on how this came about ?
for example, was there a specific page or thread that you were viewing.
I checked the http logs and it is not showing much around that time.
here is a log example of an attack: /forum/list.php?f=1%2F%00%27%7C%7CSLeeP%283%29%26%26%271
there are thousands of these every day, my attitude is to ban IP address as soon as I see that, that seems to have helped tremendously. though I did ban an IP inadvertantly when I setup a type too closely to valid data
____________________
contact: email me
File Share: https://share2.co.uk
ParsTV: https://ParsTV.co.uk
Post Edited (Tue 02 Jul 08:41)
|
|
|
|
Topic Originator: onandupthepars
Date: Fri 5 Jul 20:31
Hi Brian
I was watching the Forfar match on Pars TV and sometimes looking at the football forum.
Can you tell me how I might find the kind of detailed log info you've posted?
Here is a copy of the first notification on my av:
<<< Exploit attempt blocked
June 29 at 2:21 PM
Feature:
Online Threat Prevention
An SQL injection attempt was made by dafc.net. We blocked the connection to prevent the attacker from tampering with sensitive data. >>>
That's all it says. When I right click on it I don't get anything more.
|
|
|
|
Topic Originator: brian
Date: Sat 6 Jul 10:57
the log info is from the website log (hhttps log file) so you won't see that.
you would not recall which thread you happened to be viewing ?
____________________
contact: email me
File Share: https://share2.co.uk
ParsTV: https://ParsTV.co.uk
|
|
|
|
Topic Originator: onandupthepars
Date: Sat 6 Jul 12:12
During the match I'm pretty sure I looked at the thread "confirmed team for today" (Connor 560).
Not sure if I looked at any others while the game was on. I might have. Sorry I can't be more precise.
Post Edited (Sat 06 Jul 14:51)
|
|
|
|
|