Results 1 to 10 of 10

Thread: How to report hacking site

  1. #1

    How to report hacking site

    Both my friends and my yahoo acounts were targeted by some lamer who has owned both acounts. I realize there is not much I can do about this other then emailing yahoo, however upon investigation I discovered that she must have been given a link to a fake yahoo login, which started it all, and with her loging in, it emailed the password to the atacker who then changed the password and set up some bot on that acount. That bot now sends that same link to everybody in the friends list, however I deleted the message without opening the link my acount was somehow targeted as well.

    After viewing the source code of the fake login page I quickly discovered where the lamer downloaded it from, I have gone to this site and it is full of booters, crackers and all kinds of lamer stuff. My question is do I report this to the web host that the site is on, or do i also report it to some other parties.

  2. #2
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,323
    Report it to Yahoo and list it under Phishing attacks: Yahoo! Privacy and Security page. Email them (see the section on Reporting Incidents) and include as many details as possible, such as the orginal email, ip address of the spoofed site, etc. You could also use their Security Feedback form

    Ensure that both of you have changed your passwords. While he/she can host whatever information they want, by spoofing Yahoo (in an attempt to phish for information) they may have crossed the line.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  3. #3
    ********** |ceWriterguy
    Join Date
    Aug 2004
    Posts
    1,608
    You know, it's quite amazing. I've had a yahoo mail account since 1996 and it's never had a hack attempt. For those interested in exactly *why*, it's quite a simple process really -

    1. Don't share your freaking password, ever.
    2. Change it often.
    3. Stay off of the hacking sites, the porn sites, and anything else that's not 'computer hygenic'.
    4. Don't use your Yahoo account for anything important. Mine's used when I subscribe to a demo software or a site that will spam me endlessly with advertisements.

    This all boils down to one thing:

    5. Use common sense, knothead.

    Amazingly enough, that's 9 years worth of knowledge that has kept that particular account completely anonymous and unhacked. It's one of 5 yahoo accounts I use for the same purpose. I'm quite happy to report that none have ever been hacked.
    Even a broken watch is correct twice a day.

    Which coder said that nobody could outcode Microsoft in their own OS? Write a bit and make a fortune!

  4. #4
    If this guy is such a lamer then what are you doing on a board frequented by skiddies, asking a question like that.

  5. #5
    Thanks msmittens, i tryed the link you provided, filled out the form and am awaiting a responce

    I do not share my password with anyone, and i change my passwords on all my acounds every month. I belive it origionated from an email she recieved and then she followed the link and logged into her acount, from that point her acount was taken over, and the bot that is now useing it, sends the link to everyone, I did not open the link with my acount, I set up a new acount to see what the link does at which point i discovered it was a fake login.

    If this guy is such a lamer then what are you doing on a board frequented by skiddies, asking a question like that.
    Because I was wanting to know the proper way to go abouts reporting the site where the fake login came from, so that I can prevent this from hapening to others. Does this make me a skiddie as well?
    \"I think Adid just had a heart attack, I tryed to revive him but it was too late!\" - Delta Force Black Hawk Down

  6. #6
    Senior Member
    Join Date
    Apr 2004
    Posts
    1,024
    Originally posted here by Amanda
    If this guy is such a lamer then what are you doing on a board frequented by skiddies, asking a question like that.
    AO is not a skiddie board. Why would you say that?
    [H]ard|OCP <--Best hardware/gaming news out there--|
    pwned.nl <--Gamers will love this one --|
    Light a man a fire and you\'ll keep him warm for a day, Light a man ON fire and you\'ll keep him warm the rest of his life.

  7. #7
    AO is not a skiddie board. Why would you say that?
    I tend to agree with grunt. This is a good example of how we handle skiddies here.
    - contact user about this assignment: AP Poster: |3lack|ce
    Let me see... normally you people would counter that a witty phrase with something sort of like: "No... im not a script-kiddie, you are! DuurRrrR!!1!11!".

  8. #8
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    /off topic

    At first read this sounds like pharming, but it could be simpler, like a keylogger or whatever.

    My comment to add to this thread is that not only do you change passwords etc regularly, think about your password recovery details:

    "mother's maiden name"............"favourite city" and so on................please do not answer these honestly as that is the easiest way to social engineer your account...........too many people who know you have access to that information, and the password recovery is all done by dumb bots these days?

    Just a thought

  9. #9
    Senior Member
    Join Date
    Apr 2004
    Posts
    1,024
    Originally posted here by Amanda
    Let me see... normally you people would counter that a witty phrase with something sort of like: "No... im not a script-kiddie, you are! DuurRrrR!!1!11!".
    No, actually we wouldn't. What website have you been looking at?
    [H]ard|OCP <--Best hardware/gaming news out there--|
    pwned.nl <--Gamers will love this one --|
    Light a man a fire and you\'ll keep him warm for a day, Light a man ON fire and you\'ll keep him warm the rest of his life.

  10. #10
    A small update, I have checked and it apears that my acount has not been hacked, but because i am in her friends list I am being targeted by a booter program. She was hacked because she got an email that said it was comeing from her which I told her to never open and she forgot about this, clicked on it and logged into the fake login.

    Thanks for the sugestion, indeed i also use your sugested teqnique of useing false ansers to the secret question. I have sugested this to her many times, and I have created a new acount for her yesterday for which I did this. Many thanks for this.

    Amanda, sory for the confusion I wasnt implying that you were a sckiddie, but the reverse I got the impression that you may or may not have been impying that I was one since I was asking this question. I Dont want this to become any flame war.

    The reason I am not posting the link to the site here is that it contains many cracking tools and in case someone else who might be viewing this thread decided to go there and start useing these tools.

    I just located the host of the site and sent them an email via their online forum. I also informed the people who make YTunnelPro (anti boot) that an illegal version and serial for their product can be found at the site.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •