Results 1 to 7 of 7

Thread: Warning: Marks daily apple hacked page

  1. #1
    delvarworld's Avatar
    delvarworld is offline Junior Member
    Join Date
    Jun 2011
    Posts
    12

    Warning: Marks daily apple hacked

    Shop Now
    PLEASE BE ADVISED

    The main page of marks daily apple has been hacked. At the bottom of the page HTML is an applet tag trying to run a malicious exe that will infect your computer. DO NOT CLICK "ALLOW" TO ANY POPUP FROM MARKS DAILY APPLE.

    The forums do NOT APPEAR TO BE AFFECTED.

    Mark, what to do:

    SHUT DOWN THE SITE NOW.

    Edit your page templates and remove the applet code.

    Delete the exe from your public html root level folder.

    UPGRADE WORDPRESS, VBULLETIN, AND ANY PLUGINS YOU HAVE INSTALLED. The entry point could have been anywhere. CHANGE YOUR LOG IN PASSWORDS IMMEDIATELY. Anything could have been compromised since they were able to get a file on your web space, including forum passwords.

    Your contact page is broken because of the attack so I couldn't email you there.

  2. #2
    delvarworld's Avatar
    delvarworld is offline Junior Member
    Join Date
    Jun 2011
    Posts
    12
    IF YOU ARE ON A WINDOWS MACHINE, AND YOU EVER CLICKED "ALLOW" TO A POPUP ON MARKS DAILY APPLE, YOUR COMPUTER HAS BEEN INFECTED.

    This virus targets Windows machines only. Mac OSX and Linux users are fine, as usual. If you clicked "Allow" to a popup on MDA, you need to install a virus scanner (I suggest Avast!), then disconnect your computer from the internet AS SOON AS POSSIBLE, and run a full scan.

    IF YOU USE YOUR FORUM PASSWORD FOR ANY OTHER APPLICATIONS, ESPECIALLY EMAIL, CHANGE ALL YOUR PASSWORDS NOW.

    Since the malicious file (run.exe) is hosted on Mark's web space, that means the entire website has been compromised. Any corner of the site could potentially be affected.

    The virus has been in place since last night (Monday Feb 6th). It is very scary that it has been unnoticed for so long. Many people could have been infected by now. It still hasn't been fixed as of Tuesday, Noon PST. This is a very serious problem. Does anyone know a faster way to contact Mark?

  3. #3
    delvarworld's Avatar
    delvarworld is offline Junior Member
    Join Date
    Jun 2011
    Posts
    12
    Please help spread the word through Twitter, and add @Mark_Sisson . Warn people against visiting the main site.

  4. #4
    olehcat's Avatar
    olehcat is offline Senior Member
    Join Date
    Feb 2012
    Location
    Illinois
    Posts
    104
    omgosh how scary! I did get that message this morning and I said "no" (I'm on a Mac, but still...). I'm glad things seem to be okay!

  5. #5
    john_e_turner_ii's Avatar
    john_e_turner_ii is offline Senior Member
    Join Date
    Feb 2010
    Location
    Flower Mound, Texas
    Posts
    2,086
    The prophecy has been fulfilled.

  6. #6
    desertjedi's Avatar
    desertjedi is offline Junior Member
    Join Date
    Feb 2012
    Posts
    3
    The vegans have struck!!!

  7. #7
    delvarworld's Avatar
    delvarworld is offline Junior Member
    Join Date
    Jun 2011
    Posts
    12
    If you're running Windows you should perform a full scan of your computer. There's no such thing as a perfect virus scanner, and your computer can be taken over even if you have one running (that's Windows for you).

    It is possible, however unlikely, that any data stored on this website was compromised. I highly doubt that any credit card information is stored on this website, and is handled through a secure purchasing third party. Mark has stated in a comment he will make a more informative blog post, so stay tuned for that.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •