View Full Version : PSO World

21-12-2004, 10:01 PM
PSO World is down again! I hope that when it gets back up again, all the pictures will be working.

21-12-2004, 11:00 PM
This looks like a hack rather than a server switch. I can't tell for certain but it doesn't look good :S

21-12-2004, 11:25 PM
decswxaqz is right, it looks like a hack... I hope they can recover, as this could be nasty...

21-12-2004, 11:45 PM
web worm, yep a server hack

21-12-2004, 11:52 PM
Looks to be good job too. Every page has it, which suggests some sort of my sql injection. Unless they've managed to redirect any psoworld link to this one page.
I hate to see things like this happen. And they were just getting back too. Hope they can recover.

22-12-2004, 12:31 AM
Hacking into PSO.. but hacking into websites!??!?thats just not right

22-12-2004, 12:55 AM
how is it any different?

22-12-2004, 10:52 AM
Yeah... they're both wrong... Knucklehead...

22-12-2004, 11:43 AM
We've been getting a lot of support today from people who've had their sites "hacked" in the
24 hours, most of whom are now seeing a page containing "NeverEverNoSanity WebWorm
generation 1" or something similar (the generation number will certainly change for most
people). Most of you seem to be worried that our servers have been hacked or some other
large problem has occurred. This is not the case, however.

If you'd like more information on the worm, zdnet has some decent coverage at http://news.zdnet.com/2100-1009_22-5499725.html.

This worm spreads via phpBB (using a flaw we first sent an announcement about on Nov. 23), so
please upgrade phpBB as soon as you can (more information can be found at http://www.phpbb.com/phpBB/viewtopic.php?t=240636).

If you have any data that's been overwritten by the worm, please do not contact support until
you've upgraded your software. Doing so only wastes your time as well as ours, as the worm
will only keep overwriting your files as long as it goes unpatched. Once you have upgraded
your software, we'd be more than happy to help you recover your lost data.

This is an email from my own host.

22-12-2004, 12:08 PM
Ah, so it's a webworm. They should've been more careful :P.

22-12-2004, 12:10 PM
They were using a highly cusomtised version of phpbb. So I think they removed the copyright of phpbb because it was so highly customised. But this made any updates released by phpbb very difficult to implement.

22-12-2004, 12:52 PM
We're lucky that Ragol doesn't use phpBB...

22-12-2004, 01:09 PM
Indeed. Reading more, it seems that it's an actual PHP fault rather than PHPbb I think. They released an urgent announcement to upgrade to version 4.3.10 I think it was, of PHP. It's just that PHPbb use a feature that had a security issue. Tried reading about it, but some people said it was PHPbb and some PHP. =/

EDIT: Seems to be only the files that were changed. No db stuff is changed, so they just need to upload a backup of their files. Hopefully.

22-12-2004, 01:19 PM
A PHP fault? How? Do they mean that the ini files were changed? Or is it still relating to the databases?

EDIT- Sorry, didn't see that last edit there, OK.

22-12-2004, 04:54 PM
PSO World is back up again.

Vash the Stampe
23-12-2004, 01:06 AM
i know that sucks!!! those damn pictures won't work!! i can get there but the pics are not working.