tSR hacked

[Maxpphire]

Actually I'm saying that for the people who can't do math.

[Vyro]

Jeeesus!

He hacked military website of Bangladesh Military:

http://www.army.mil.bd/
and
http://mail.army.mil.bd/

hmmm....... It's also kind of suspicious because all 3 of your posts are giving "info" on this hacker...

[LeleleleMAXIMUM]

Apparently, Vyro is not very good at math at all.
EDIT:
Or maybe reading.

[Vyro]

ugh... khodam2 only has 3 posts. and all of them are about this hacker...

[Ngamer01]

And you're going on about khodam who's going on about the hacker...

Should I go on? =V

Really the problem is over, so no need to dwell on this anymore.

[Dazz]

Well what's more interesting really is that Vyro is on the same I.P as two banned accounts. Heheh.
Zoshi, and Metaboss, and is currently reading the the thread that those two were most active in... Very obscure, wouldn't you say Vyro?


Are people really so self-obcessed that they have to join a forum and talk about themselves as though they're really famous on the internet for the wrong reason?
That's like coming home from school like a proud kid "Look dad, I got an F!"

[khodam2]

Jeeesus!

He hacked military website of Bangladesh Military:

http://www.army.mil.bd/
and
http://mail.army.mil.bd/

how does you know so much about the websites being hacked? If it's for exposure, the very same person taking on an alt and spreading his works sounds plausible...

I mean, who are you?
(sorry for the insecurity but it's true, since you registered all you've done is dedicate yourself to posting news articles and websites of him...)

The account that used the exploit posted on milw0rm to gain admin access was khodam. You do the math.

Having seen how the hack works, it's disappointing to see that mybb's profile page was so vulnerable to sql injection which enabled someone to modify their usergroup to get admin access.

I know, I saw the one line patch for 1.4.7 and facepalmed, I didn't even need to see the exploit.

I'm almost tempted to run MyBB in a separate jail.

Mastering security is something to do with his life - something rather impressive really. He's also spreading global protest messages which to me is at least a decent purpose for hacking sites. What he did with our site was fucking lame though...

Well, it looks like he is using a public exploit that was posted on milw0rm, so unless he wrote that himself or wrote tools to automate the process, it's more of a dedication thing rather than security skills. Regardless, even if I don't really agree with spreading messages like this -- even if you had a point, it pretty much undermines it when you hurt innocent bystanders (who aren't even American) just to spread it -- I'm glad it was just a main page deface and not something more destructive like wiping out the forums.

I'm not sure why we got special treatment, though. Our deface message was different from all the other sites.

1) Download exploit from milw0rm and try to make your account admin... You'll fail asshole!
2) I coded my own exploit which works fast and accepts list of sites and it attacks to 1000 site in an hour and I get access to about 500 of them.
3) I'm master in security, hacking and specially programming... You think army.mil had same vulnerability with you? You think army.mil have PunBB or MyBB or shits like that?

Do you think these sites:
http://www.zone-h.com/archive/special=1/...obodyCoder

Have PunBB or MyBB?

No... Just you are talking with hacking and security GOD...

[Vipershark]

learn english

[FRET]

Everyone bow to the hacking and security god

[Dazz]

'fraid this "security god" has failed to realise that he's listing site's he's hacked, and we have his I.P.

Should I contact these army websites with that information?

[Techokami]

'fraid this "security god" has failed to realise that he's listing site's he's hacked, and we have his I.P.

Should I contact these army websites with that information?

Yes indeed.

[Deathbringer]

Yeah, fuck him.

[K.D.]

1) Download exploit from milw0rm and try to make your account admin... You'll fail asshole!
2) I coded my own exploit which works fast and accepts list of sites and it attacks to 1000 site in an hour and I get access to about 500 of them.
3) I'm master in security, hacking and specially programming... You think army.mil had same vulnerability with you? You think army.mil have PunBB or MyBB or shits like that?

Do you think these sites:
http://www.zone-h.com/archive/special=1/...obodyCoder

Have PunBB or MyBB?

No... Just you are talking with hacking and security GOD...

Yes, I'm sure that the fact that you used the email [email protected] and the reg IP 79.140.81.83 (the same that are used in the milw0rm exploit) was just a coincidence. And what about Locus7Shell Modified by #!physx^ and r57shell by evilc0ders? Did you write those too?

You might have other undisclosed MyBB vulnerabilities, I don't doubt that one bit. You might know how to root a box just fine (hooray, www writable httpd.conf files -- good thing we're not that lame). You might have found a vulnerability in mil.bd's site yourself too. I never said you couldn't hack, it's pretty clear you can.

But honestly, do you really think anyone in here cares? Why brag in here? This is a spriting site, the owner isn't even American and I don't think anyone in here supports mass defacement of sites.

Yeah, we got careless with an old MyBB installation and you owned us, congrats. Again, I'm glad you didn't try to cause us serious damage (which you could have if you wanted and we'd be forced to restore from backups), but I don't see why you're expecting us to admire you or something.