Joomla.org has been hacked

Joomla ^ | 8/18/2007 | armymarinemom

[armymarinemom]

Ouch. CMS orginaztion's portal has been hacked.

[KoRn]

HAX30RD!!

[knarf]

Who is joomla and cms ?

[Khepera]

OK so who are they?
Whats CMS? Why don’t you tell us something about this place so we can give a damn?

[tsmith130]

Are we all suppose to know what this means? If so, I didn’t get the memo.

[Sterlis]

Thanks for the find! I use the software - not a good omen!

[armymarinemom]

CMS is a content management system. Joomla is used by a lot of orgs both left and right to build web sites. The site hacked is the program’s web site portal. Not a good sign for the most recent build concerning security.

[armymarinemom]

Thanks for the find! I use the software - not a good omen!

Nope. Looks like it's back to the drawing board for the latest builds.

[Red Badger]

Is this HUGH, or just SERIES?..............

[driftdiver]

“Whats CMS? Why don’t you tell us something about this place so we can give a damn?”

CMS = Content Management System

Unless you are a geek or your website is running on their technology you don’t care.

It runs on PHP which has some known security issues.

[armymarinemom]

We do have our share of geeks around here. LOL

[GreenAccord]

CMS stands for Content Management Systems.

They are often open source, meaning the code and all the trappings are free to use. They are most commonly PHP-based.

I work for a software company that has built a .NET version, which we sell and integrate into enterprises with other Microsoft platform applications.

The site likely actually wasn’t hacked, but taken offline for a newer version to be implemented. There’s a reference to haX0rs which is probably just part of their ‘under construction’-esque image.

[Sterlis]

No need to care if you don’t know what it is...

Joomla is an Open-source Content Management System (think portal software). It forms the basis of many websites. (www.porsche.com comes to mind).

Hope that helps.

[BallyBill]

Are you bragging or complaining?

[BenLurkin]

We do have our share of geeks around here.

And a good thing too because people like me are pretty much clueless about how this computer stuff all works.

[armymarinemom]

The site likely actually wasn’t hacked, but taken offline for a newer version to be implemented. There’s a reference to haX0rs which is probably just part of their ‘under construction’-esque image.

They usually use the joomla logo for updates. ax3L is a turkish hacking group. You can still get to their forum but the main site is offline with what looks like an index.php hack.

[armymarinemom]

Are you bragging or complaining?Just giving a heads up.

[Sterlis]

Doubt it... "Sonvurus.oRg delpi Search İslam !! Search Muslim..! Search Ottoman Empire !Search Turkei ! DO NOT SEARCH SONVURUS.oRg because We Are ghost FighterS : ) From Turkei ! Kısa bir not : Tek Takılırım 3-5dostum var 7mılyar dusmanım var..! Dostlarım Ezin bakıyım şu a.q dunyasını görsunler siz kimsiniz ; ) Sonvurus.oRg : System-Root , k!k0 , Kamashira , Axel, Local-Turk and Cold1a Best oF delphi..! Sonvurus'a gelmek ıstıyosun ? delpiero@linuxmail.oRg Kısa bır surelıgıne ekle kabul edecem (; Note : delpi Returned ..!"

[driftdiver]

“The site likely actually wasn’t hacked, but taken offline for a newer version to be implemented. There’s a reference to haX0rs which is probably just part of their ‘under construction’-esque image.”

The error message has change to a very generic ‘under maintenance’. I suspect it was actually hacked.

There’s really no reason a site like theirs should ever be down for maintenance. They could easily install a new version and just migrate over to it.

Serious implications for open source CMS.

[driftdiver]

“You can still get to their forum but the main site is offline with what looks like an index.php hack.”

You sound like a geek! :)

Geeks UNITE!