• Log InLog In
  • Register
Liquid`
Team Liquid Liquipedia
EDT 03:39
CEST 09:39
KST 16:39
  • Home
  • Forum
  • Calendar
  • Streams
  • Liquipedia
  • Features
  • Store
  • EPT
  • TL+
  • StarCraft 2
  • Brood War
  • Smash
  • Heroes
  • Counter-Strike
  • Overwatch
  • Liquibet
  • Fantasy StarCraft
  • TLPD
  • StarCraft 2
  • Brood War
  • Blogs
Forum Sidebar
Events/Features
News
Featured News
Serral wins Maestros of the Game 227ByuL, and the Limitations of Standard Play3Team Liquid Map Contest #22: Results and Winners7Code S Season 2 (2026): RO4 and Finals Preview12TL.net Map Contest #22 - Voting & Ladder Map Selection7
Community News
Weekly Cups (June 29-July 5): Solar Doubles0MC vs IdrA, Boxer vs Nal_rA to be Legacy Matches @ BlizzCon415.0.16 Hotfix (June 30) - Balance + Bug Fixes40Weekly Cups (June 22-28): Zergs thrive in new patch5[TLMC] Summer 2026 Ladder Map Rotation0
StarCraft 2
General
Serral wins Maestros of the Game 2 Is the larve respawn broken? 5.0.16 patch for SC2 goes live (8 worker start) 5.0.16 Hotfix (June 30) - Balance + Bug Fixes Weekly Cups (June 29-July 5): Solar Doubles
Tourneys
Crank Gathers Season 4: BW vs SC2 Team League GSL CK #5 Race War HomeStory Cup 29 RSL Revival: Season 6 - Qualifiers and Main Event Vespene Cup #1 — $300+ USD, July 10
Strategy
[G] Having the right mentality to improve
Custom Maps
New Map Maker - Looking for Advice - Love or Hate Work In Progress Melee Maps [D]RTS in all its shapes and glory <3
External Content
Mutation # 533 Die Together The PondCast: SC2 News & Results Mutation # 532 Nuclear Family Mutation # 531 Experimental Artillery
Brood War
General
Snow On New ASL S22 Map, Zerg Nerf BGH Auto Balance -> http://bghmmr.eu/ BW General Discussion Starcraft vs Retro Category on Twitch Data needed
Tourneys
CSLAN 4 is Coming! Escore Tournament StarCraft Season 2 The Casual Games of the Week Thread [Megathread] Daily Proleagues
Strategy
Simple Questions, Simple Answers Creating a full chart of Zerg builds Relatively freeroll strategies Why doesn't anyone use restoration?
Other Games
General Games
Dawn of War IV Stormgate/Frost Giant Megathread Summer Games Done Quick 2026! Nintendo Switch Thread ZeroSpace at Steam NextFest - Last free demo
Dota 2
Looking for a Dota Mentor Official 'what is Dota anymore' discussion
League of Legends
Heroes of the Storm
Simple Questions, Simple Answers Heroes of the Storm 2.0
Hearthstone
Deck construction bug
TL Mafia
NeO.D_StephenKing vs This Guy From 1 Million Dance TL Mafia Community Thread TL Mafia Power Rank Vanilla Mini Mafia
Community
General
US Politics Mega-thread Russo-Ukrainian War Thread UK Politics Mega-thread YouTube Thread Canadian Politics Mega-thread
Fan Clubs
The HerO Fan Club!
Media & Entertainment
Anime Discussion Thread Movie Discussion! Series you have seen recently... [Req][Books] Good Fantasy/SciFi books [TV/BOOK] *SPOILERS* Game of Thrones Discussion
Sports
2024 - 2026 Football Thread Tennis[sport] Formula 1 Discussion McBoner: A hockey love story TeamLiquid Health and Fitness Initiative For 2023
World Cup 2022
Tech Support
FPS when play League Of Legend on laptop How to clean a TTe Thermaltake keyboard? Computer Build, Upgrade & Buying Resource Thread
TL Community
The Automated Ban List
Blogs
Major Shifts in the Gaming I…
TrAiDoS
An Exploration of th…
waywardstrategy
I'm an arrogant trash talke…
FlaShFTW
Gauntlet SC2: A Retrospectiv…
Ctone23
ramps on octagon
StaticNine
Funny Nicknames
LUCKY_NOOB
Customize Sidebar...

Website Feedback

Closed Threads



Active: 13677 users

BWUSA.org = Hacked . - Page 2

Blogs > Xeris
Post a Reply
Prev 1 2 3 Next All
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 02:05 GMT
#21
ya I know... he's investigating it, we'll find out who did it soon. vengeance shall be had.
twitter.com/xerislight -- follow me~~
MoNKeYSpanKeR
Profile Blog Joined May 2007
United States2869 Posts
June 05 2008 02:27 GMT
#22
the site looks fine to me, what exactly is wrong with it?

Also sorry to hear it Xeris. I wonder who did it?
<3's Mani and Seraphim, thx for the second chance. TSL Name: TSL-mSLeGenD
MoNKeYSpanKeR
Profile Blog Joined May 2007
United States2869 Posts
June 05 2008 02:31 GMT
#23
also will this delay tomorrow YL? I'm playing in it and if you reschedule i might not be able to play since i could be working.
<3's Mani and Seraphim, thx for the second chance. TSL Name: TSL-mSLeGenD
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 02:32 GMT
#24
yes, tomorrow it will continue as planned.

it was fixed, just all the forum data was lost...
twitter.com/xerislight -- follow me~~
Centric
Profile Blog Joined March 2008
United States1989 Posts
June 05 2008 02:44 GMT
#25
That really sucks man...hope you can get it all together quickly. Also hope you find the bastard.
Super serious.
FragKrag
Profile Blog Joined September 2007
United States11567 Posts
June 05 2008 02:44 GMT
#26
Why is this in a blog? It should definitely be a post in the BW forum.
*TL CJ Entusman #40* "like scissors does anything to paper except MAKE IT MORE NUMEROUS" -paper
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 03:56 GMT
#27
who the hell cares where it is -________-; blog is the same shit as a forum post anyways, it's the exact same format, it's just in a different subsection of the site
twitter.com/xerislight -- follow me~~
Skew
Profile Blog Joined October 2006
United States1020 Posts
June 05 2008 05:23 GMT
#28
Sorry Xer.

I don't *think* you can track an XSS/SQL injection wipe on the DB as the content that caused it would also be wiped... someone correct me if I'm wrong, but good luck anyways. Daily DB backups next time around.
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 05:55 GMT
#29
ya , we're going to start doing daily backups
twitter.com/xerislight -- follow me~~
Xeln4g4
Profile Joined January 2005
Italy1209 Posts
June 05 2008 08:15 GMT
#30
retarded idiots are everywhere ...
yenta
Profile Blog Joined April 2006
Poland1142 Posts
June 05 2008 09:08 GMT
#31
You should be taking daily dumps of your database. I don't see it as being so big that it would matter. Just add it as a shell command to your crontab, one line to save the days dump as some date-valued file, another to delete backups older than say a week.
Trutacz Practice Discord - https://discord.gg/PWF7Pv
yenta
Profile Blog Joined April 2006
Poland1142 Posts
June 05 2008 09:16 GMT
#32
On June 05 2008 14:23 Skew wrote:
Sorry Xer.

I don't *think* you can track an XSS/SQL injection wipe on the DB as the content that caused it would also be wiped... someone correct me if I'm wrong, but good luck anyways. Daily DB backups next time around.


Logs?

Check your db logs - if they are set up right they should have a record of the statement that caused the wipe.

Also. you should be logging any input that is not standard, or since its a small site, just log all input and clean your logs once they are older than a week.
Trutacz Practice Discord - https://discord.gg/PWF7Pv
Jank
Profile Blog Joined March 2008
United States308 Posts
June 05 2008 10:24 GMT
#33
Probably the result of sql injection. Make sure you patch the hole and not just restore everything and pretend it never happened. Go through all your code making sure all the input is properly sanitized.
"You don't know you're wearing a leash if you sit by the peg all day." - Michael Parenti
QuanticHawk
Profile Blog Joined May 2007
United States32154 Posts
June 05 2008 12:26 GMT
#34
If I remember, steve said it was an sql, cuz the smi site got hacked yesterday too.
PROFESSIONAL GAMER - SEND ME OFFERS TO JOIN YOUR TEAM - USA USA USA
MasterOfChaos
Profile Blog Joined April 2007
Germany2896 Posts
June 05 2008 14:16 GMT
#35
If the attacker was not entirely supid(which is well possible, 1337 scriptkiddies often are) then your IP will be a random TOR exitnode, or an open wlan.
Did you already find out how he killed your db?
LiquipediaOne eye to kill. Two eyes to live.
Flaccid
Profile Blog Joined August 2006
8917 Posts
June 05 2008 17:45 GMT
#36
Not much detail is given in this blog post, so here is a link to what happened:

Description of hack

To quote this guy's post:

This is a Windows vulnerability. What the hacker did was attempt to run around the code and gain access to the asp.net Windows Media Player library via our /images/ folder. They found an image they liked, They ran a some kind of script, and gained access to run a sql instertion script that the application itself did not allow.

Sneaky fucker.

Apparently, this a vulnerability that Microsoft put out a patch to, and our hosting provider didn’t run it against our VPS yet.

So to protect your server against this hack, have your hosting provider run the latest updates for the vulnerability.


So it's really not a matter of basic SQL-injection. That stuff is protected against in the code in several different ways. It's a server-side vulnerability that is exploited and something most people have no control over. The only sites at risk are those running on a Windows server. Just do a google search and you'll see the hundreds of thousands of sites that have been hit in this way.

Point being we have to go a roundabout way to prevent this from happening again, and again, and again... and again.....

That's the internet for you.
I'd rather have a bottle in front of me than a frontal lobotomy
Jonoman92
Profile Blog Joined September 2006
United States9110 Posts
June 05 2008 18:29 GMT
#37
I wondered what was going on. I was looking for the thread with the info about my challenge and I realized the most recent threads were from a while ago.
Goosey
Profile Blog Joined September 2005
United States695 Posts
Last Edited: 2008-06-05 18:37:28
June 05 2008 18:36 GMT
#38
That sucks. :| I am surprised your host doesn't do regular backups

edit: oh and they run Windows Server? Unless you are reliant on that software stack I would recommend switching hosts for sure. Daily backup is pretty much standard.
#1 Shuttle Fan.
nofAcedAgent
Profile Blog Joined July 2007
United States952 Posts
Last Edited: 2008-06-05 19:27:47
June 05 2008 19:27 GMT
#39
On June 05 2008 12:56 Xeris wrote:
who the hell cares where it is -________-; blog is the same shit as a forum post anyways, it's the exact same format, it's just in a different subsection of the site



Chill yo~ I think he just meant it would get noticed by more people in the brood war section, hes not the one that hacked you, control your rage (;p) (not that I know the benefit of having more viewers)

Anyway, hope the bastard gets caught man, sorry to hear it
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 22:00 GMT
#40
Apparently whoever did it tried to do it again last night and today -___________- !!

Woo I hope whoever hacked my site shows up to a LAN.
twitter.com/xerislight -- follow me~~
Prev 1 2 3 Next All
Please log in or register to reply.
Live Events Refresh
Next event in 1h 21m
[ Submit Event ]
Live Streams
Refresh
StarCraft 2
SortOf 192
StarCraft: Brood War
Britney 40213
GuemChi 1913
Shuttle 625
Leta 567
Mong 407
actioN 323
ZergMaN 89
ggaemo 80
Aegong 63
yabsab 51
[ Show more ]
Dewaltoss 35
GoRush 20
Bale 20
League of Legends
JimRising 645
Counter-Strike
m0e_tv637
Super Smash Bros
Mew2King94
Other Games
Happy290
NeuroSwarm116
Sick56
Liquid`Ken10
Organizations
Other Games
gamesdonequick24497
StarCraft 2
Blizzard YouTube
StarCraft: Brood War
BSLTrovo
[ Show 16 non-featured ]
StarCraft 2
• StrangeGG 30
• AfreecaTV YouTube
• intothetv
• Kozan
• IndyKCrew
• LaughNgamezSOOP
• Migwel
• sooper7s
StarCraft: Brood War
• iopq 4
• BSLYoutube
• STPLYoutube
• ZZZeroYoutube
Dota 2
• lizZardDota270
League of Legends
• Jankos1329
• Stunt455
• HappyZerGling88
Upcoming Events
Replay Cast
1h 21m
CrankTV Team League
3h 21m
OSC
9h 21m
Replay Cast
16h 21m
Replay Cast
1d 2h
CrankTV Team League
1d 3h
OSC
1d 5h
Replay Cast
1d 16h
RSL Revival
2 days
Serral vs Bunny
ByuN vs GgMaChine
CranKy Ducklings
2 days
[ Show More ]
Afreeca Starleague
2 days
Snow vs Jaedong
YSC vs hero
RSL Revival
3 days
Solar vs Rogue
Maru vs NightMare
Sparkling Tuna Cup
3 days
GSL
4 days
Replay Cast
4 days
WardiTV Weekly
5 days
The PondCast
6 days
Liquipedia Results

Completed

CSL Season 21: Qualifier 2
HSC XXIX
Eternal Conflict S2 E1

Ongoing

IPSL Spring 2026
Acropolis #4
YSL S3
CSL 2026 Summer (S21)
CranK Gathers Season 4: BW vs SC2 Team League
SCTL 2026 Spring
Heroes Pulsing #3
XSE Pro League 2026
IEM Cologne Major 2026
Stake Ranked Episode 2
CS Asia Championships 2026
Asian Champions League 2026
IEM Atlanta 2026
PGL Astana 2026
BLAST Rivals Spring 2026

Upcoming

Escore Tournament S3: W2
ASL Season 22: Wild Card Qualifier
CSLAN 4
Blizzard Classic Cup 2026
SC4ALL II: StarCraft II
Kung Fu Cup 2026 Grand Finals
RSL Revival: Season 6
Light Tournament 2026
Eternal Conflict S2 Finale
Eternal Conflict S2 E3
Eternal Conflict S2 E2
Logitech G Connect 2026
StarSeries Fall 2026
FISSURE Playground #5
BLAST Open Fall 2026
Esports World Cup 2026
BLAST Bounty Summer 2026
BLAST Bounty Summer Qual
Stake Ranked Episode 3
TLPD

1. ByuN
2. TY
3. Dark
4. Solar
5. Stats
6. Nerchio
7. sOs
8. soO
9. INnoVation
10. Elazer
1. Rain
2. Flash
3. EffOrt
4. Last
5. Bisu
6. Soulkey
7. Mini
8. Sharp
Sidebar Settings...

Advertising | Privacy Policy | Terms Of Use | Contact Us

Original banner artwork: Jim Warren
The contents of this webpage are copyright © 2026 TLnet. All Rights Reserved.