Join John Adams, world renowned Intl Matchmaker, Monday nights 8:30 EST for Live Webcasts!
And check out Five Reasons why you should attend a FREE AFA Seminar! See locations and dates here.



View Active Topics       View Your Posts       Latest 100 Topics       FAQ Topics       Mobile Friendly Theme


HA shut down after mail server was hacked by spammers!

Announcements and site updates.

Moderators: fschmidt, jamesbond

Post Reply
User avatar
Winston
Site Admin
Posts: 27508
Joined: August 18th, 2007, 2:16 pm
Contact:

HA shut down after mail server was hacked by spammers!

Post by Winston » January 19th, 2016, 8:39 pm

Announcement:

Hi all,
Earlier today, this site went down for a few hours because my account was deactivated by Bluehost! I got an email about it from them, saying that SpamHaus.org blacklisted my site and asked me to call them about it. It was rude for them to deactivate my account without warning. So I called Bluehost TOS department. They told me that my site server was used to send out large volumes of spam mail using a technique called "snowshoe spamming".

http://www.wisegeek.com/what-is-snowshoe-spamming.htm

Bluehost reactivated my account, but they warned me that if it happens again, I'll have to find another webhost. Apparently, someone hacked into our mail server and used it to send out tons of spam mail. I'm not sure how. Maybe by hacking into my account or email or installing malware on this site. Either way, they instructed me to deactivate my mail servers until I trace down the malware using one of their programs, or another way. So I've done that for now. This means that you won't receive any email notifications from the forum for now, until I get this thing fixed and sorted out. Then I'll have to check the mail server logs to see if it's still sending out spam. I'll also have to change my webhost account passwords too of course, in case those were hacked as well.

I'm sure not how this happened, or whether dark forces are targeting this site, or whether we were just the victim of a mass snowshoe spam attack that was widespread across many IP's and not specifically designed to target us.

Any of you know anything about this or have any suggestions? I'll update you all if I find out anything.
Check out my FUN video clips in Russia and Female Encounters of the Foreign Kind video series and Full Russia Trip Videos!

Join my Ukrainian/Russian Women Dating Site to meet thousands of legit foreign girls at low cost!

"It takes far less effort to find and move to the society that has what you want than it does to try to reconstruct an existing society to match your standards." - Harry Browne




Check out our Dating Sites and International Romance Tours!



User avatar
Winston
Site Admin
Posts: 27508
Joined: August 18th, 2007, 2:16 pm
Contact:

Re: HA shut down after mail server was hacked by spammers!

Post by Winston » January 24th, 2016, 6:25 pm

Update:

After Bluehost support scanned my site for malware and found none, they reinstated my mail server. So you should now be receiving forum emails and notifications again. So far, the mail spammers and hackers have not come back. But I will have support monitor the mail server logs to see if they return. I don't know how they hacked our mail server in the first place. So it's hard for me to know how to prevent it. That's the problem. Anyone have any idea?

Do you think we should encrypt this site with SSL certificates so that our address starts with https rather than http? Is this necessary? Would it help protect against hackers? Anyone know anything about this? I'm referring to this:

https://googlewebmastercentral.blogspot ... ignal.html
Check out my FUN video clips in Russia and Female Encounters of the Foreign Kind video series and Full Russia Trip Videos!

Join my Ukrainian/Russian Women Dating Site to meet thousands of legit foreign girls at low cost!

"It takes far less effort to find and move to the society that has what you want than it does to try to reconstruct an existing society to match your standards." - Harry Browne

User avatar
Winston
Site Admin
Posts: 27508
Joined: August 18th, 2007, 2:16 pm
Contact:

Re: HA shut down after mail server was hacked by spammers!

Post by Winston » January 24th, 2016, 8:08 pm

By the way, if any of you run websites, here are some free online tools that checks for malware or malicious scripts on your site.

https://aw-snap.info/file-viewer/
https://sitecheck.sucuri.net/
http://quttera.com/
http://www.unmaskparasites.com/
http://www.sparktrust.com/
https://www.virustotal.com/#url
Check out my FUN video clips in Russia and Female Encounters of the Foreign Kind video series and Full Russia Trip Videos!

Join my Ukrainian/Russian Women Dating Site to meet thousands of legit foreign girls at low cost!

"It takes far less effort to find and move to the society that has what you want than it does to try to reconstruct an existing society to match your standards." - Harry Browne

tom
Junior Poster
Posts: 566
Joined: November 9th, 2007, 11:40 pm

Re: HA shut down after mail server was hacked by spammers!

Post by tom » January 27th, 2016, 2:27 pm

Ya you should watch ALL, I know it might be a bit boring, just the beginning,



YouTube will not parse https, no minor issue,
The mouse over graphics in the navigation bar, obvious errors not fixed for a long time, a very bad sign,
<a onmouseover="setOverImg('14','');" onmouseout="setOutImg('14','');" href="http://www.happierabroad.com/team.php" target=""><img id="button14" src="buttons/undefined" border="0" vspace="1" hspace="1"></a>
just a point to reference

I am no expert, maybe a lot of vulnerable code, I have a bad feeling you may need to re-code the whole site,
scanning for a string of malicious code is not the same as vulnerable code or structure, a scanner will not find this.

Post Reply
  • Similar Topics
    Replies
    Views
    Last post

Return to “Announcements”