• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

"Simple Joomla Password Cracker"

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> UNIX // GNU/Linux

View previous topic :: View next topic  
Author Message
azoundria
Just Arrived
Just Arrived


Joined: 24 Nov 2009
Posts: 0


Offline

PostPosted: Tue Nov 24, 2009 3:58 am    Post subject: "Simple Joomla Password Cracker" Reply with quote

Hi Everyone,

I don't use Joomla.

Nobody knows my password except the server provider I am using, and myself.

I just changed my password, and the problem happened again.

My passwords are a mix of 16 uppercase letters, lowercase letters, and numbers, of which there are 4,178,511,850,022,702,569,647,809,560,576 possible combinations.

My password has been changed, and my index has been altered as follows:
http://ismywall.com/

Quote:
Simple Joomla Password Cracker
Developed by : ilmuwebsite.com

Masukkan password hashnya disini :

Tolong di kembangkan ya ?! Very Happy


I'm using a reseller from Addora. I've dealt with attacks before where the index page is changed, but none where my password was compromised.

You can see the PHPInfo() here, if that helps: http://www.ismywall.com/phpinfo.php

I have told Addora to upgrade the server to PHPSuExec, and see if that helps, but I'm not sure what else to suggest, and I have no idea how somebody could have gotten or changed the password with or without PHPSuExec. Aren't they heavily encrypted somewhere in the server core?

I've found a page on the 'Simple Joomla Password Cracker' here:
http://www.ilmuwebsite.com/detil_hacking/20/Konsep_sederhana_Joomla_Password_Cracker/

But, when translated, it doesn't seem to match the problem I'm experiencing, though the translation is fairly difficult to understand.

To my knowledge and tests, none of my clients are affected, and at this point, it's really just confusing and scary that someone can do this.

Help, anyone?
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> UNIX // GNU/Linux All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Looking for more Windows Networking info?

Sign up to the WindowsNetworking.com Monthly Newsletter, written by Enterprise Security MVP Deb Shinder, containing news, the hottest tips, Networking links of the month and much more. Subscribe today and don't miss a thing!
View a sample newsletter.

Become a WindowsNetworking.com member!

Discuss your Windows Networking issues with thousands of other Windows Newtorking experts. Click here to join!

Community Area

Log in | Register

Readers' Choice

Which is your preferred data recovery solution?

Follow TechGenix on Twitter