Jonathan Leger's Forum Hacked

36 replies
  • OFF TOPIC
  • |


How can this have been prevented?

Brian
#forum #hacked #jonathan #leger
  • Profile picture of the author JayXtreme
    It can't be prevented.

    As long as safeguards can be put in place electronically, they can be broken in reverse..

    Jay
    Signature

    Bare Murkage.........

    {{ DiscussionBoard.errors[2190228].message }}
  • Profile picture of the author Justin Says
    Does this put members of jon legers products at risk?
    Signature

    My name is Justin Lewis, with Business Optimizer I've been in business for 6 years online with multiple six figure years, here are the tools that have helped me the most: Increase your reviews with this free Review Handout

    {{ DiscussionBoard.errors[2190429].message }}
    • Profile picture of the author cabezon
      Ah hackers, what a major PITA bunch of parasitic scum they can be. And, I believe Jonathan's on an anniversary vacation this week. What a drag.
      {{ DiscussionBoard.errors[2190474].message }}
      • Profile picture of the author Hackbridge
        Originally Posted by cabezon View Post

        Ah hackers, what a major PITA bunch of parasitic scum they can be. And, I believe Jonathan's on an anniversary vacation this week. What a drag.
        Yes it is a shame, it's still down!

        Brian
        {{ DiscussionBoard.errors[2190612].message }}
        • Profile picture of the author Jenny Willapana
          They hacked a bunch of his sites. Ridiculous. If caught, I hope there's jail time involved, seriously.
          {{ DiscussionBoard.errors[2191265].message }}
    • Profile picture of the author Derek_Thomas
      Originally Posted by ICanSeeProfits View Post

      Does this put members of jon legers products at risk?
      I'm curious of this as well.

      Anyone have any thoughts?

      Thanks,
      Derek
      Signature
      Thousands of happy Warriors agree...
      This service is a MUST - so worth it - Barry C.
      Derek is a keyword genius - Alan W.
      The results are incredible - page one already! - Navia B.
      {{ DiscussionBoard.errors[2192103].message }}
  • Profile picture of the author Mark Blaze
    What is is with these hacker's and promoting religion when they hack a website!

    I really dont understand them at all (hacker's that is)!

    Mark Blaze
    Signature
    Aweber BONUS! <- Email Marketing At It's Best!
    The Best Spinner BONUS!<- Article Spinning Made 110% Easier!
    Unique Article Wizard BONUS! <- 2000+ Backlinks + Traffic With Each Article!
    {{ DiscussionBoard.errors[2190513].message }}
  • Profile picture of the author HomeBizConcepts
    It would obviously be likely that any of your personal information may have been compromised. However the products I have purchased in the past from Jonathan only required name and email. All vital information was submitted via Paypal, at least in my case. They of course do not transmit this information to him and therefore would not have been accessible by the rogue hacker.

    Most likely these individuals are in another country and the international extradition or prosecutionary practices are weak at best.

    I must qualify the above statement as a law enforcement officer that has had opportunity to work on cases that involve internet, national and international terrorism and the like. Some internet crimes of this nature can be classified or punishable as terrorism. But not knowing the implications it has had on Jonathan's end I am not qualified to comment. I am quite certain that it has effected his income!

    We all know that he will do all in his power to correct this.

    It is a pain for sure as I log into his forum every few days.

    And yeah, what is it with the religious agenda with these fools! I am not sure God, Allah, Buddha or whomever would approve.
    Signature
    The combined effort of the group is greater than that of the individual
    Here is a shameless plug for my business!
    Get a $6900 monthly income built for you.
    http://go2-url.com/aednuz
    {{ DiscussionBoard.errors[2192303].message }}
    • Profile picture of the author Kurt
      Originally Posted by HomeBizConcepts View Post

      It would obviously be likely that any of your personal information may have been compromised. However the products I have purchased in the past from Jonathan only required name and email. All vital information was submitted via Paypal, at least in my case. They of course do not transmit this information to him and therefore would not have been accessible by the rogue hacker.

      Most likely these individuals are in another country and the international extradition or prosecutionary practices are weak at best.

      I must qualify the above statement as a law enforcement officer that has had opportunity to work on cases that involve internet, national and international terrorism and the like. Some internet crimes of this nature can be classified or punishable as terrorism. But not knowing the implications it has had on Jonathan's end I am not qualified to comment. I am quite certain that it has effected his income!

      We all know that he will do all in his power to correct this.

      It is a pain for sure as I log into his forum every few days.

      And yeah, what is it with the religious agenda with these fools! I am not sure God, Allah, Buddha or whomever would approve.
      It's possible the religious references are a decoy. I don't think we can really assume any motive with the info we have.
      Signature
      Discover the fastest and easiest ways to create your own valuable products.
      Tons of FREE Public Domain content you can use to make your own content, PLR, digital and POD products.
      {{ DiscussionBoard.errors[2192325].message }}
      • Profile picture of the author HomeBizConcepts
        Originally Posted by Kurt View Post

        It's possible the religious references are a decoy. I don't think we can really assume any motive with the info we have.
        Agreed!
        Signature
        The combined effort of the group is greater than that of the individual
        Here is a shameless plug for my business!
        Get a $6900 monthly income built for you.
        http://go2-url.com/aednuz
        {{ DiscussionBoard.errors[2192373].message }}
        • Profile picture of the author videomike
          I think the motives are very unclear.
          At the moment it seems the hacker has not really done much damage besides defacing some of Jon's sites.
          I don't want to go into more detail here as long as Jon has not had the chance to fix this mess and I don't want tointroduce the hackers to new ideas should they be reading this. (and that could well be - maybe they are boosting their egos when they read of their deed everywhere on the net...)

          Mike
          Signature
          WP TID Generator tells you which keywords bring you buyers for the clickbank products you promote on your wordpress blog.
          {{ DiscussionBoard.errors[2192631].message }}
          • Profile picture of the author Janice Sperry
            Originally Posted by videomike View Post

            I think the motives are very unclear.
            At the moment it seems the hacker has not really done much damage besides defacing some of Jon's sites.
            I don't want to go into more detail here as long as Jon has not had the chance to fix this mess and I don't want tointroduce the hackers to new ideas should they be reading this. (and that could well be - maybe they are boosting their egos when they read of their deed everywhere on the net...)

            Mike
            I agree. It looks all cosmetic if that is a way to put it. Like a tagger spraying graffitti on the outside of the building. Good thinking videomike not to go into more detail.

            I saw an almost identical hack job about a year ago and it got traced back to a competitor. Had nothing to do with Allah... just a decoy to try and throw off the investigators. They had never penetrated past the home page.
            {{ DiscussionBoard.errors[2193201].message }}
  • Profile picture of the author WinsonYeung
    what a pain in the ass, such a well internet marketer get hacked as well...

    Any idea how we can diversity the hacking damage if it happen that our website get hacked? Will it prevent the spreading of the hack by using a different IP address from a hostgator VPS?

    Regards,
    Winson
    Signature
    [WSO of The Day] Discount How To Generate 172.56% Positive Return OR build your List for FREE!

    "Case Study: Discover You Can Make $1371.66 With A Simple Blog Post by Clicking Here"
    {{ DiscussionBoard.errors[2192328].message }}
  • Profile picture of the author Warrior Dude
    I think the real question is where the heck is Jon, to not of taken that down yet?

    Doesn't anyone have his phone number to let him know what is going on.
    {{ DiscussionBoard.errors[2193072].message }}
  • Profile picture of the author bodger2010
    Yes i have emailed john via paydotcom and selected to send to his personal email address as well, just to check he is aware, I am sure Amin has got his number in case of emergencies, and this definitely qualifies!

    The big worry of course is our blogs, without going into too much detail i am sure user of Jon's products get my drift, i have checked a couple of mine they look ok and all quiet since yesterday when i guess this happened.

    keep your eyes peeled members, and let this serve as a reminder that complex passwords are not just a good idea but essential, always, don't use the same password for everything, get a good password manager software like roboform and/or password coral and auto generate complex passwords every time you create a new account for anything.

    As this forum comes up in google when you search for jon leger hacked i suggest we make this thread our temporary home until Jon returns.

    Amin have you got an update for us?

    Cheers team

    Bodger2010
    {{ DiscussionBoard.errors[2193148].message }}
  • Profile picture of the author ~kev~
    Originally Posted by Hackbridge View Post

    How can this have been prevented?

    Brian
    Any site can be hacked - at one point or another. All it takes is a Zero Day exploit - which is an exploit that has not been fixed yet.

    The most common cause of hacks are insecure passwords - people using simple passwords, and not having brute force protection installed. What will happen, a hacker will use a program that throws thousands of passwords at the server. This is called a Brute Force attack. Servers need some kind of security software installed, which locks the root account for X number of minutes after X number of failed log ins.

    Not updating the server OS, not updating the server applications - database software, php software, web server software, control panel software,,,,, can leave a server open for attack.

    Not updating the website software - if your using a content management system, its critical to keep the software updated.

    The guy could have got some kind of virus on his home computer that logged his admin account information, and then emailed that information to the hacker.

    When you see a website that has been hacked, it might not be the owners fault. The hosting provider might have updated the operating system, so all sites on the server might have been hacked. There are maybe dozens of ways that the site could have been compromised.
    {{ DiscussionBoard.errors[2193193].message }}
  • Profile picture of the author ayolov
    Hi Guys,

    I first thought it was an exploit to the forum (simplemachines) John uses, but all his sites (even some of his software) has been attacked, I think someone wants to stop John from going forward with his work!

    ******* John, if you read this and there is anything I can help you out with, don't hesitate to ask! *******

    This is very sad, his forums provide a wealth of information.
    Signature
    Desarrollo Negocios Web Cómo hacer un próspero negocio web, ¡en español!
    A bilungual site to grow and prosper online
    {{ DiscussionBoard.errors[2193216].message }}
    • Profile picture of the author davewebsmith
      Originally Posted by ayolov View Post

      Hi Guys,

      I first thought it was an exploit to the forum (simplemachines) John uses, but all his sites (even some of his software) has been attacked, I think someone wants to stop John from going forward with his work!

      ******* John, if you read this and there is anything I can help you out with, don't hesitate to ask! *******

      This is very sad, his forums provide a wealth of information.
      Some ppl use the same passwords on all their systems, I have seen it happen that one system is breached - then the hacker gets into the CPanel and because in this case it was on a shared hosting all on once place - Its field day to deface and go mad

      Always use different password
      Always change them
      Always do updates
      If you dont know - Google it

      Signature
      watch this space ...
      {{ DiscussionBoard.errors[2193293].message }}
      • Profile picture of the author ayolov
        Originally Posted by davewebsmith View Post

        Some ppl use the same passwords on all their systems, I have seen it happen that one system is breached - then the hacker gets into the CPanel and because in this case it was on a shared hosting all on once place - Its field day to deface and go mad

        Always use different password
        Always change them
        Always do updates
        If you dont know - Google it

        Well, I'm not sure if that was the case. I use some of John's software and the software displayed a hacked legend as well, this to me was someone directly going after his network.

        This person probably even knew John would be away. Competitors or something related to his business model...
        Signature
        Desarrollo Negocios Web Cómo hacer un próspero negocio web, ¡en español!
        A bilungual site to grow and prosper online
        {{ DiscussionBoard.errors[2193427].message }}
        • Profile picture of the author davewebsmith
          Originally Posted by ayolov View Post

          Well, I'm not sure if that was the case. I use some of John's software and the software displayed a hacked legend as well, this to me was someone directly going after his network.

          This person probably even knew John would be away. Competitors or something related to his business model...
          Was more of a discussion pointing to habits ppl have I have been guilty of this myself (have since reformed )
          Signature
          watch this space ...
          {{ DiscussionBoard.errors[2193441].message }}
      • Profile picture of the author ~kev~
        Originally Posted by davewebsmith View Post

        Always use different password
        Always change them
        Changing the password on a regular basis is recommended, but its not effective for people who use weak passwords.

        If someone used a weak password the first time, chances are they are going to use a weak password the second time. If the password was brute forced the first time, its going to be brute forced the second time.

        It does not do any good to change your password, if you have a key logger virus installed on your computer.

        It does not do any good to change your password, if your using insecure public computers to log into your site - like from a friends house, library, internet cafe,,,,,,.

        People need to look at security as a whole, that means everything from keeping their home and business computers secure, to keeping their servers updated.
        {{ DiscussionBoard.errors[2194413].message }}
        • Profile picture of the author Hackbridge
          In part I wanted people to be aware that it's problem for all of us in one way or another, and not to bring attention/glory? to the people who did this. Whatever their motives.

          Brian
          {{ DiscussionBoard.errors[2194524].message }}
          • Profile picture of the author WendellC
            I think what might have happened is Jonathan recently sent an email to his list saying he was about to go on vacation for a week.

            Could be a coincidence buy maybe the hacker decided this was a good time to hit...

            Not sure if his main support guy Amin is around to help fix things.

            Wendell
            Signature

            List your no opt-in product here for free: No Opt In Required

            {{ DiscussionBoard.errors[2194597].message }}
  • Profile picture of the author BriannaZachary
    very soon it will be prevented
    {{ DiscussionBoard.errors[2193232].message }}
  • Profile picture of the author davewebsmith
    @ MikeVideo - if you right click -> view source

    here is a reference to http://img411.imageshack.us/img411/8074/511k.gif - they are prob using that to track hits on the front page

    These are junior hackers who have found a hole in the script and used it

    More than likely it was a SQL injection that gave them admin info then they updated the .htaccess to redirect to this page

    As JayXtreme mentioned all systems are vulnerable to attack .. you might want to google things like "sql injection" or "sql vulnerabilities" on the scripts you are using to see if there are patches needed to close known vulnerabilities

    Just so you know ... even scripts like wordpress have security holes ...
    wordpress sql injections - Google Search

    Thats why its important to update to the latest patches - much like a anti virus on your pc to keep all the nasties out

    Hope this info helps

    DaveWebSmith
    Signature
    watch this space ...
    {{ DiscussionBoard.errors[2193277].message }}
  • Profile picture of the author davewebsmith
    Sorry for the repost - Just Googled the Hacker' name

    SarBoT511 - Google Search

    Servers Hacked - Preventing SQL Inject? - cPanel Forums

    Its on the CPanel Forum as i suspected - SQL Injection breach
    Signature
    watch this space ...
    {{ DiscussionBoard.errors[2193307].message }}
  • Profile picture of the author Alan Petersen
    If he has backups it would probably still take a few hours to overwrite all the hacker crap so it's going to take some time to get back to normal.
    Signature
    {{ DiscussionBoard.errors[2193357].message }}
  • Profile picture of the author candocdx
    1waylinks.net isn't back up yet
    Signature
    {{ DiscussionBoard.errors[2195718].message }}
    • Profile picture of the author WendellC
      Originally Posted by candocdx View Post

      1waylinks.net isn't back up yet
      Yeah, I just went to the 1waylinks.net site and my AVG detected a threat:

      URL: canmaid.ru:8080/Applet1.html
      Name: JSE WebStart (type 1066)

      I decrypted an obfuscated script that was planted in the first line of the 1waylinks.net page and it's trying to run some kind of PHP program from the canmaid.ru site.

      Wendell
      Signature

      List your no opt-in product here for free: No Opt In Required

      {{ DiscussionBoard.errors[2195865].message }}
  • Profile picture of the author zoobie
    Well, Wilson if you want a prevention, then probably you will need a bunch of hosting that run mirror sites.

    And also you will need backups on a secure remote server. So that you can recover your site in a shorter time if anything happened on your site,
    {{ DiscussionBoard.errors[2196562].message }}
  • Profile picture of the author davewebsmith
    Hi all,

    there is a great website here called https://www.grc.com/password.htm

    i use it to generate my passwords
    Signature
    watch this space ...
    {{ DiscussionBoard.errors[2196807].message }}
    • Profile picture of the author pappyy3
      Unfortunately, websites no matter what passwords you use are pretty easy targets to hack.

      If these guys want to target you, then there's not too much you can do to prevent it from happening eventually.

      To show you the level of ingenuity of of them have, some of these hackers are provided with employment by Government authorities, to help them identify weaknesses in systems security measures, websites, online storage, banking etc.

      Some of the worst cyber attacks have been caused by people not yet old enough to drive a car ......

      We can make it hard for them, but not impossible
      Signature

      Tonster

      {{ DiscussionBoard.errors[2197382].message }}
  • Profile picture of the author PSM
    Yes 1waylinks is back up but just tried to give me a nasty virus when I went to it! (like WendellC mentioned) Luckily Avast caught it all, but it tried spreading into a load of files really quickly and I am now having to run scans to check if anything did get through.

    Hopefully Jon can get all this sorted because I was going to sign up to 3way and 1waylinks yesterday!
    {{ DiscussionBoard.errors[2199157].message }}
  • Profile picture of the author PSM
    Just a quick note, either someone is going on a hacking rampage, or that virus which my anti-virus software tried to block (didn't manage to get it all) from 1waylinks gave the hacker access to my ftp program or something, because today all my sites have been hacked too... (we're talking 4 different hostgator accounts!)

    Not cool!
    {{ DiscussionBoard.errors[2207435].message }}

Trending Topics