Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
ForumsOff topicAnchor site hacked


Doesn't know what he doin
2879 posts

Uber Geek
+1 received by user: 369

Subscriber

Topic # 151845 7-Sep-2014 18:53
Send private message

A friend sent me the link to the Anchor site (the milk company...) saying she needed to email them.

http://www.anchor.co.nz/

Anyone heard of them? I gotta say it's kinda creepy the mask. lol

And why Anchor? Someone must really hate Milk I guess




Bachelor of Computing Systems (2015)

 

--

 

Late 2013 MacBook Pro with Retina Display (4GB/2.4GHz i5/128GB SSD) - HP DV6 (8GB/2.8GHz i7/120GB SSD + 750GB HDD)
iPhone 6S + (64GB/Gold/Vodafone NZ) - Xperia Z C6603 (16GB/White/Spark NZ)

Sam, Auckland 

Create new topic
:)
2876 posts

Uber Geek
+1 received by user: 85

Subscriber

  Reply # 1123764 7-Sep-2014 18:55
One person supports this post
Send private message

Haha, definitely a weird website to hack..

Gotta admit, I'm very curious about "hacking" and how they do it.. would be interesting to see some white-hat hacking, see how its done.





13988 posts

Uber Geek
+1 received by user: 1763


  Reply # 1123766 7-Sep-2014 18:57
Send private message

Perhaps using an old version of a CMS which has a security hole. That is a pretty large company though isn't it to be hacked?

1526 posts

Uber Geek
+1 received by user: 143

Trusted

  Reply # 1123767 7-Sep-2014 19:01
One person supports this post
Send private message

What normally happens is they find an exploit, write a script then scan and auto hack any website that has the vulnerability they identified.




CPU: Intel 3770k| RAM: F3-2400C10D-16GTX G.Skill Trident X |MB:  Gigabyte Z77X-UD5H-WB | GFX: GV-N660OC-2GD gv-n660oc-2gd GeForce GTX 660 | Monitor: Qnix 27" 2560x1440

 

 

2653 posts

Uber Geek
+1 received by user: 222

Trusted

  Reply # 1123781 7-Sep-2014 19:35
Send private message

mentalinc: What normally happens is they find an exploit, write a script then scan and auto hack any website that has the vulnerability they identified.


So, script kiddies?




Check out my LPFM Radio Station at www.thecheese.co.nz cool

 

 

 

Use this link to sign up to Bigpipe broadband and you'll get $20 off your first bill: Referral Link

13988 posts

Uber Geek
+1 received by user: 1763


  Reply # 1123784 7-Sep-2014 19:46
One person supports this post
Send private message

Just hope they have good backups, as many cheap hosts only do daily backups, so the hacked changes have possibly overwritten the backups by now. Although the website is possibly hosted in house as they are a pretty  big company.

 

Anyone know what the previous site was built on? Wordpress, Joola etc. Old versions of Joomla do seem to be a victim of hackers, and old versions of wordpress have known security holes.

1470 posts

Uber Geek
+1 received by user: 119


  Reply # 1123786 7-Sep-2014 19:49
One person supports this post
Send private message

looks like they are on to it. Just a blank page now




HTPC Intel Pentium G3258 cpu, Gigabyte H97n-wifi motherboard, , 8GB DDR3 ram, onboard  graphics. Hauppuage HVR 5500 tuner,  Silverstone LC16M case, Windows 10 pro 64 bit using Nextpvr and Kodi

13988 posts

Uber Geek
+1 received by user: 1763


  Reply # 1123787 7-Sep-2014 19:51
Send private message

Gilco2: looks like they are on to it. Just a blank page now

 

Maybe the host picked it up as a compromised website. Looks like it traces to the webhost domain , sitehost dot co dot nz.

2653 posts

Uber Geek
+1 received by user: 222

Trusted

  Reply # 1123793 7-Sep-2014 19:59
Send private message

Backup installed by the looks.




Check out my LPFM Radio Station at www.thecheese.co.nz cool

 

 

 

Use this link to sign up to Bigpipe broadband and you'll get $20 off your first bill: Referral Link

:)
2876 posts

Uber Geek
+1 received by user: 85

Subscriber

  Reply # 1123796 7-Sep-2014 20:02
Send private message

WEbsite is back up now.





442 posts

Ultimate Geek
+1 received by user: 135


  Reply # 1123811 7-Sep-2014 20:23
Send private message

As someone said earlier, most website hacking occurs through an exploit of the website code. Usually forcing admin access (SQLi, or other exploit) to the CMS and then either uploading a malicious file from there which allows the hacker to change files and upload there own files. Or another common method is to socially engineer the website host into giving the hacker access to the server/website.

13988 posts

Uber Geek
+1 received by user: 1763


  Reply # 1123910 7-Sep-2014 22:14
Send private message

Aaroona: WEbsite is back up now.

 

Yes looks to be, pretty good to get it back up on a Sunday evening.
Anyone know what CMS they are using? Doesn't look to be wordpress or joomla, unless it is heavily cusomtise.

8025 posts

Uber Geek
+1 received by user: 387

Trusted
Subscriber

  Reply # 1124232 8-Sep-2014 12:56
Send private message

It's wordpress, pretty easy to tell eg:

http://www.anchor.co.nz/wordpress/wp-login.php 
http://www.anchor.co.nz/wordpress/ 

So it was probably the usual old version known exploit thing.

Looks like they have updated to 4.0 so problem should be solved (for now....)
http://www.anchor.co.nz/wordpress/readme.html

Create new topic

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

N4L helping TAKA Trust bridge the digital divide for Lower Hutt students
Posted 18-Jun-2018 13:08

Winners Announced for 2018 CIO Awards
Posted 18-Jun-2018 13:03

Logitech Rally sets new standard for USB-connected video conference cameras
Posted 18-Jun-2018 09:27

Russell Stanners steps down as Vodafone NZ CEO
Posted 12-Jun-2018 09:13

Intergen recognised as 2018 Microsoft Country Partner of the Year for New Zealand
Posted 12-Jun-2018 08:00

Finalists Announced For Microsoft NZ Partner Awards
Posted 6-Jun-2018 15:12

Vocus Group and Vodafone announce joint venture to accelerate fibre innovation
Posted 5-Jun-2018 10:52

Kogan.com to launch Kogan Mobile in New Zealand
Posted 4-Jun-2018 14:34

Enable doubles fibre broadband speeds for its most popular wholesale service in Christchurch
Posted 2-Jun-2018 20:07

All or Nothing: New Zealand All Blacks arrives on Amazon Prime Video
Posted 2-Jun-2018 16:21

Innovation Grant, High Tech Awards and new USA office for Kiwi tech company SwipedOn
Posted 1-Jun-2018 20:54

Commerce Commission warns Apple for misleading consumers about their rights
Posted 30-May-2018 13:15

IBM leads Call for Code to use cloud, data, AI, blockchain for natural disaster relief
Posted 25-May-2018 14:12

New FUJIFILM X-T100 aims to do better job than smartphones
Posted 24-May-2018 20:17

Stuff takes 100% ownership of Stuff Fibre
Posted 24-May-2018 19:41


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.