[meteorite-list] NOT AN AD: Being Hacked Sale!!!

From: Meteorites USA <eric_at_meteoritecentral.com>
Date: Mon, 20 Jul 2009 15:38:06 -0700
Message-ID: <4A64F1CE.1020602_at_meteoritesusa.com>

Hey Greg, MikeG, List

I've tried tracing this through SSH with netstat and lsof and lots of
other linux commands and nothings is working.

I can't seem to find out where the vulnerability is.

Oh and my server is a Virtual Dedicated Server, meaning I am the server
admin. This is NOT normal hosting, or hotlinking bandwidth leeching. If
it were that would be a simple fix. My server vendor will NOT help me
with this. It is not their problem as the vulnerability MAY have been
installed by me on the server using a third party script like my
Wordpress Blog software written in PHP.

Warning to Geoff Notkin and anyone else out there that uses Wordpress,
Zen Cart, OS Commerce, PHP Pro Bid, Wikimedia, or any other third party
PHP script that uses a MySQL database, please check your systems. This
is happening to me now as I write this, but it could happen to you too.

Regards,
Eric








 Greg Catterton wrote:
> Hey, I used to have some experience in this field and may be able to lend a hand.
> Have you tried doing a trace? It sounds like your bandwidth is being redirected. Are you getting alot of spam? Have you done anything recently out of the norm (links, spam, unknown docs etc)? Call me and I can try to get this figured out.
>
> Greg
>
> --- On Mon, 7/20/09, Meteorites USA <eric at meteoritesusa.com> wrote:
>
>
>> From: Meteorites USA <eric at meteoritesusa.com>
>> Subject: [meteorite-list] NOT AN AD: Being Hacked Sale!!!
>> To: "meteorite-list at meteoritecentral.com" <meteorite-list at meteoritecentral.com>
>> Date: Monday, July 20, 2009, 6:13 PM
>> Hi everyone,
>>
>> I am dealing with a hacker on my server (ALL 40 of my
>> websites are up and down and email is spotty) as I am
>> writing this email! I am currently being hacked and this
>> sale is only because of this because it will cost me $1 per
>> GB of bandwidth overage usage fees as soon as it reaches my
>> bandwidth limit. Every minute that goes by is costing me
>> money!!!!
>>
>> I've spent the last 4 to 5 days trying to stay one step
>> ahead of this hacker, and he keeps leeching the bandwidth
>> off my server. I've done everything I know how to do and
>> spent hours on the phone with my server vendor, but they are
>> of no help as it seems the extent of this hack extends into
>> the legal realm.
>>
>> In other words the hacker is breaking the law by
>> essentially causing a DoS (denial of service) by using up
>> all my server memory and bandwidth and can be prosecuted if
>> we are able to determine where this hack is coming from!
>>
>> The money generated from this sale is going to bandwidth
>> overage fees, upgrading of services through my vendor, and
>> to hire a network systems administrator, and attorney. I
>> will be seeking legal action and prosecuting to the full
>> extent of the law possible!
>>
>> If anyone out there has is a system administrator or can
>> refer me to one that might be able to help I would greatly
>> appreciate it. This must stop now. The bandwidth being used
>> is in the hundreds of Gigabytes per day! Multiply that by $1
>> per GB and this can get very expensive VERY FAST!
>>
>> Again, if anyone out there in meteorite land is a sys admin
>> or knows someone who might be able to help I would be
>> forever grateful. I'm a webmaster and web design
>> artist/photographer. I can run servers, install server
>> related software, and run 40 websites at a time, but I'm not
>> hacker, and this is beyond my knowledge level.
>>
>> Thanks in advance for any help you guys can provide. You
>> can reach me at 904-236-5394 and I'd be glad to speak with
>> anyone who might be able to help.
>>
>> THANKS!
>>
>> ---------------------------------------
>> http://www.meteoritesusa.com/special.htm
>> NOTE: If you cannot see this page please EMAIL ME
>> off-list!!!
>>
>> Sorry to bother but we need to move some pieces quick fast
>> and in a hurry...
>>
>> First $599 take this 4963g Whole specimen: http://cgi.ebay.com/METEORITE-Premium-Chondrite-Huge-Whole-Stone-4963g_W0QQitemZ250468896022
>>
>> This is a "Must Move Now" item. Paypal or Credit Card over
>> the phone only right now.
>> Will ship this afternoon.
>>
>> Also, I've got a large lot of some slices and a Huge corner
>> cut of NWA 1794 - 543.7g Total weight $249 shipped for all.
>>
>> 329.1g Canyon Diablo "Beautiful Sculptured Piece" -
>> $199 from my personal collection!
>> 2.1g Achondrite from my personal collection!
>> 2.6g Achondrite from my personal collection!
>>
>> View all special sale pieces here: http://www.meteoritesusa.com/special.htm
>>
>> Also take a look at our other auctions. I will consider
>> reasonable offers!
>>
>> Regards,
>> Eric Wichman
>> Meteorites USA
>> 904-236-5394
>>
>>
>>
>> ______________________________________________
>> http://www.meteoritecentral.com
>> Meteorite-list mailing list
>> Meteorite-list at meteoritecentral.com
>> http://six.pairlist.net/mailman/listinfo/meteorite-list
>>
>>
>
>
>
>
>
Received on Mon 20 Jul 2009 06:38:06 PM PDT


Help support this free mailing list:



StumbleUpon
del.icio.us
reddit
Yahoo MyWeb