Virus through site?

**snipeattacker** · 08-09-2012, 20:30

maybe is related to the gamethief trojan dropper java tried to install last week on this site thru quantcast?

**Rushster** · 08-09-2012, 22:52

We think it is simply a script vulnerability so lots has been locked down for now while testing continues.

**Karth** · 09-09-2012, 00:32

I'm getting another threat warning, this time for something related to http://hkbbs.hehagame.com/cache/ads/google.html. This one is new for me.

**Rushster** · 09-09-2012, 01:01

Yep we are watching and working on issues

**snipeattacker** · 09-09-2012, 03:50

look here im logged in

mainpage im not...

also i notice that heba thing, blocked it.

advice: use noscript here, so you can manually allow things...

personally i think someone is trying to drop these tru this site somehow. http://www.microsoft.com/security/po...r=desc&size=10

MSE detected them once (few days ago) here, they failed to install on my PC... link is safe to click... there are 3 variants... the dropper is the one i detected, that installs the other if succesful

**Rushster** · 10-09-2012, 02:02

A quick update.

I have worked on this extensively over the weekend. Because the IncGamers community is the target of an individual/organisation, we have gone to a little expense to monitor the site 24/7 externally. We have another team now onboard to help us shore things up across IncGamers. It's a pain in the backside and it will stretch us budget wise but we feel we need to provide you with an extra layer of security moving forwards.

We think we identified the issue which was a software issue which has been dealt with.

**Diab** · 10-09-2012, 02:06

Originally Posted by Rushster

A quick update.

I have worked on this extensively over the weekend. Because the IncGamers community is the target of an individual/organisation, we have gone to a little expense to monitor the site 24/7 externally. We have another team now onboard to help us shore things up across IncGamers. It's a pain in the backside and it will stretch us budget wise but we feel we need to provide you with an extra layer of security moving forwards.

We think we identified the issue which was a software issue which has been dealt with.

WTB a "Thanks" button!

**NBarnes** · 10-09-2012, 02:11

Originally Posted by Diab

WTB a "Thanks" button!

One suspects that in lieu of a 'Thanks', they'll take donations to offset the cost of outside security analysis.

**Varyafirion** · 10-09-2012, 09:55

Good to hear, Rush. I'm sure that's not how you imagined spending your weekend :( I don't suppose you would elaborate on what the problem was exactly? Just out of academic curiousity

**snipeattacker** · 10-09-2012, 11:28

Originally Posted by Varyafirion

Good to hear, Rush. I'm sure that's not how you imagined spending your weekend :( I don't suppose you would elaborate on what the problem was exactly? Just out of academic curiousity

I'm quite interested in some more details as well. Maybe a short chronological post about what happened? Names, exploit used, etc. When it is all resolved of course. I'm intrigued by the war in cyberspace.

But for now: are we 100% completely safe logging in, commenting, etc, on the forums and site? Or can't u give that assurance yet?