Heads Up .. cable website Compromised

[Mick]

You can even use google lol to crack md5

But you are right its been a long time since I have looked at pass cracking, they should probably move over to SHA1 if its much more secure

Just gotta make sure that they do not know the hash's and the salts aswell.

Little bit extra but once the hash is known and the salt they would have everything

Mickie

 

[demonx]

Thread title does not make sense anymore? Just a heads up.

"Compromised data at known cable hacking website" or something similar would do I guess.

 

[dont do it it"ll hurt]

Re: please do not delete just info

Thread title does not make sense anymore? Just a heads up.

"Compromised data at known cable hacking website" or something similar would do I guess.

did not want to have it deleted as we are not meant to mention other forums of a similar nature
mods /amin can change if they like

also manutd started a thread at the same time both of us giving the same heads up for peeps

 

[MH]

The MD5 was initially created to check for data integrity and to make sure that software had not been modified.
The thing is anything can be cracked given the appropriate time.

 

[Bronto]

did not want to have it deleted as we are not meant to mention other forums of a similar nature
mods /amin can change if they like

Title changed just for demonx

 

[demonx]

The MD5 was initially created to check for data integrity and to make sure that software had not been modified.
The thing is anything can be cracked given the appropriate time.

Well I don't think the DB has been posted yet so we shall never know

Hell, this could even be a ploy by WM to get more advertising/users and infact its just standard downtime

 

[wilson1980]

Re: please do not delete just info

well i can confirm what they said.ive been a member on there for a few year now and last few weeks the site has been down due to dos attack..its seems now over the last couple days the hackers found a flaw in the admin account once the site was up and runnin again and thats how they done what they did..this mornin when i was on there they had opened up the mods bit for all to c so u seen what they were talkin about and everything..it was reported to admin but by that time..the hackers had left a vbulletin message sayin wizards mods has been hacked and few other messages..they left a link for u to see all usernames and passwords which i looked at and there was most off the admins passwords and loads off usernames and password aswell and then the website was took off line..like someone said they do alot off what u shouldnt be doin and the hackers could be anybody from cable to where ever else. so u can say they should have been more carefull and had better security..but it was a decent site..nothing like here but had loads off usefull info..id just donated couple days before it went down but tough crap on me..not that im fussed..


just to let ya know digitalworldz is still my second home lol :Clap::Clap:

 

[Mick]

The thing is anything can be cracked given the appropriate time.

That is the thing though chris its all about time mate

It would take probably a top top computer 12 days to crack a md5 password with 8 characters.

However you change that too 12 chars with the use of some symbols (ie %)
it would take about 34 years or something like that.

All depends on the hardware, bits per second etc but I would say its better not to worry about md5 cracking but for everyone to use strong passwords.

I am not saying the above is exact its rough from another site I read before about md5 passwords.... remember they still would need the salt and the hash but this would be known if they got in from root... if they had a root login (ssh etc) on the server... that would be very bad!

Mickie

 

[bod]

its been on 'n offline over the last few weeks

 

[wilson1980]

That is the thing though chris its all about time mate


Mickie

like u said as above about its all about time. im a member on a few hacking sites and most off the members would u believe are kids startin from 11 to like 20 odd and some off the videos they leave are mad.they done what ever they done and managed to get a username and password off a bank in another country after about 20 mins.they should the video after doin it they,ve posted loads off videos like that.they hack sites and leave there messages and post for all to c..i did think about doin my own site but i watched to many videos to put me off ..hate to put alot off work into a site for some little sh1t to screw it

 

[Mick]

hate to put alot off work into a site for some little sh1t to screw it

Yeah it would be very gutting mate... we have been dos'd before and its a right pain in the ass running about looking at logs, chasing holes etc, and as you just said you get these that are on the ball and the real deal it does not matter about security as they will get in!

What can you do... you hopefully at the end still have a domain and after 6 months it will be forgotten (hopefully lol)

Mickie

 

[Diddy]

As has been mentioned the login details are linked in may places on the net. They are in plain text format and are NOT encrypted in any way.

I am only posting this to clear up any misconceptions about weather or not any member should be alarmed or not. I think if you are a member of that site then you should change your password at the earliest opportunity. And if you have been silly enough to use the SAME login details for any other sites that you frequent then you should take appropriate steps to change your passwords on them sites too.

 

[wozzo]

I got added by someone on MSN, who claimed he is passing on all my Details to NTL, Because of my NTL box operation and Copyright.



Lol

 

[bod]

check here

link by pm

alot of familiar names guys

 

[demonx]

As has been mentioned the login details are linked in may places on the net. They are in plain text format and are NOT encrypted in any way.

Where are you getting this information from? Since VB does not store passwords unencrypted. How come the passwords are in cleartext?

 

[demonx]

alot of familiar names guys

I'm not on it woo! They must have removed my account when I got banned. yar!

 

[Jenno]

I'm not on it woo!

same here

 

[wozzo]

Hmm im not on it either, might not be the full list.

 

[demonx]

So.. why oh why are they unencrypted?

I guess its all those shitty VB mods they install and one of them has been leaking user/passwords?

 

[bod]

cant believe ppl use qwerty so often for p/w