• Log InLog In
  • Register
Liquid`
Team Liquid Liquipedia
EDT 06:36
CEST 12:36
KST 19:36
  • Home
  • Forum
  • Calendar
  • Streams
  • Liquipedia
  • Features
  • Store
  • EPT
  • TL+
  • StarCraft 2
  • Brood War
  • Smash
  • Heroes
  • Counter-Strike
  • Overwatch
  • Liquibet
  • Fantasy StarCraft
  • TLPD
  • StarCraft 2
  • Brood War
  • Blogs
Forum Sidebar
Events/Features
News
Featured News
BGE Stara Zagora 2025: Info & Preview11Code S RO12 Preview: GuMiho, Bunny, SHIN, ByuN3The Memories We Share - Facing the Final(?) GSL44Code S RO12 Preview: Cure, Zoun, Solar, Creator4[ASL19] Finals Preview: Daunting Task30
Community News
GSL Ro4 and Finals moved to Sunday June 15th10Weekly Cups (May 27-June 1): ByuN goes back-to-back0EWC 2025 Regional Qualifier Results26Code S RO12 Results + RO8 Groups (2025 Season 2)3Weekly Cups (May 19-25): Hindsight is 20/20?0
StarCraft 2
General
GSL Ro4 and Finals moved to Sunday June 15th Jim claims he and Firefly were involved in match-fixing Serious Question: Mech BGE Stara Zagora 2025: Info & Preview I made a 5.0.12/5.0.13 replay fix
Tourneys
Bellum Gens Elite: Stara Zagora 2025 Sparkling Tuna Cup - Weekly Open Tournament SOOP Starcraft Global #21 $5,100+ SEL Season 2 Championship (SC: Evo) WardiTV Mondays
Strategy
[G] Darkgrid Layout Simple Questions Simple Answers [G] PvT Cheese: 13 Gate Proxy Robo
Custom Maps
[UMS] Zillion Zerglings
External Content
Mutation # 476 Charnel House Mutation # 475 Hard Target Mutation # 474 Futile Resistance Mutation # 473 Cold is the Void
Brood War
General
Will foreigners ever be able to challenge Koreans? BW General Discussion FlaSh Witnesses SCV Pull Off the Impossible vs Shu BGH auto balance -> http://bghmmr.eu/ Battle.net is not working
Tourneys
[ASL19] Grand Finals Small VOD Thread 2.0 [BSL20] GosuLeague RO16 - Tue & Wed 20:00+CET [Megathread] Daily Proleagues
Strategy
I am doing this better than progamers do. [G] How to get started on ladder as a new Z player
Other Games
General Games
Monster Hunter Wilds Stormgate/Frost Giant Megathread Nintendo Switch Thread Path of Exile Mechabellum
Dota 2
Official 'what is Dota anymore' discussion
League of Legends
LiquidLegends to reintegrate into TL.net
Heroes of the Storm
Simple Questions, Simple Answers
Hearthstone
Heroes of StarCraft mini-set
TL Mafia
Vanilla Mini Mafia TL Mafia Community Thread TL Mafia Plays: Diplomacy TL Mafia: Generative Agents Showdown Survivor II: The Amazon
Community
General
Things Aren’t Peaceful in Palestine Russo-Ukrainian War Thread US Politics Mega-thread European Politico-economics QA Mega-thread Canadian Politics Mega-thread
Fan Clubs
Maru Fan Club Serral Fan Club
Media & Entertainment
Korean Music Discussion [Manga] One Piece
Sports
2024 - 2025 Football Thread Formula 1 Discussion NHL Playoffs 2024
World Cup 2022
Tech Support
Computer Build, Upgrade & Buying Resource Thread Cleaning My Mechanical Keyboard
TL Community
The Automated Ban List
Blogs
Heero Yuy & the Tax…
KrillinFromwales
Research study on team perfo…
TrAiDoS
I was completely wrong ab…
jameswatts
Need Your Help/Advice
Glider
Trip to the Zoo
micronesia
Poker
Nebuchad
Info SLEgma_12
SLEgma_12
Customize Sidebar...

Website Feedback

Closed Threads



Active: 17710 users

BWUSA.org = Hacked .

Blogs > Xeris
Post a Reply
Normal
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 00:23 GMT
#1
Some fucking faggot hacked BWUSA, ran some dumb fucking script that totally fucked the site.

Lost all my Yankee League 2 info, every recent forum post and everything, jesus what a damn faggot whoever did it.

Now I have to re-do everything T__________________T

****
twitter.com/xerislight -- follow me~~
Xeofreestyler
Profile Blog Joined June 2005
Belgium6768 Posts
June 05 2008 00:28 GMT
#2
Aww man that sucks
were you using custom scripting or a certain premade template for site/forum?
Graphics
Carnac
Profile Blog Joined December 2003
Germany / USA16648 Posts
June 05 2008 00:30 GMT
#3
No backup?
Not that it wouldnt make the person responsible less of a jerk :>
ModeratorHi! I'm a .signature *virus*! Copy me into your ~/.signature to help me spread!
YPang
Profile Blog Joined April 2007
United States4024 Posts
June 05 2008 00:33 GMT
#4
"ehh... i was testing to see what my script would do, no harm was intended"-random hacker.
sMi.Gladstone | BW: B high| SC2: gold T_T
paper
Profile Blog Joined September 2004
13196 Posts
June 05 2008 00:34 GMT
#5
pretty lame =T
Hates Fun🤔
ForAdun
Profile Joined August 2007
Germany986 Posts
June 05 2008 00:37 GMT
#6
wtf, this is absolutely not cool at all. Not that any hacker is any cool but this is even less than not cool. Damn, can't you hackers hack sites that deserve it? Damn...
._.
Profile Blog Joined November 2007
1133 Posts
June 05 2008 00:38 GMT
#7
can you trace?
Did you find out how he did it?
:D
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 00:40 GMT
#8
ran some script that fucked up SQL database or something. luckily there were backups made for the site, but I lost all recent forum info, basically EVERYTHING on Yankee League 2 and all recent NW's we played in the past 1.5 months is gone.
twitter.com/xerislight -- follow me~~
alffla
Profile Blog Joined November 2005
Hong Kong20321 Posts
June 05 2008 00:45 GMT
#9
shittttttttt
my sympathies ;-;
Graphicssavior[gm] : What is a “yawn” rape ;; Masumune - It was the year of the pig for those fucking defilers. Chill - A clinic you say? okum: SC without Korean yelling is like porn without sex. konamix: HAPPY BIRTHDAY MOMMY!
ulszz
Profile Blog Joined June 2007
Jamaica1787 Posts
June 05 2008 00:58 GMT
#10
that sucks, sorry bro
everliving, everfaithful, eversure
thunk
Profile Blog Joined March 2008
United States6233 Posts
June 05 2008 00:59 GMT
#11
That sucks dude.
Every time Jung Myung Hoon builds a vulture, two probes die. || My post count was a palindrome and I was never posting again.
ThE_OsToJiY
Profile Blog Joined May 2008
Canada1167 Posts
June 05 2008 01:01 GMT
#12
Why didnt he go for a crappy game, like WoW or something
@ostojiy
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 01:07 GMT
#13
no idea, cuz they are huge fags.
twitter.com/xerislight -- follow me~~
iNcontroL *
Profile Blog Joined July 2004
USA29055 Posts
June 05 2008 01:13 GMT
#14
that is sad
Coulthard
Profile Joined September 2005
Greece3359 Posts
June 05 2008 01:28 GMT
#15
omg T_T
HeadBangaa
Profile Blog Joined July 2004
United States6512 Posts
June 05 2008 01:31 GMT
#16
Really really shitty...

SQL injection? Admin password hacked? What happened?
People who fail to distinguish Socratic Method from malicious trolling are sadly stupid and not worth a response.
Harem
Profile Joined November 2007
United States11390 Posts
June 05 2008 01:47 GMT
#17
Wow, that's ghey. -_-
Moderator。◕‿◕。
thedeadhaji *
Profile Blog Joined January 2006
39489 Posts
June 05 2008 01:54 GMT
#18
Uris
Profile Joined February 2008
United States47 Posts
Last Edited: 2008-06-05 02:02:24
June 05 2008 02:01 GMT
#19
a d- noob probably got mad and then took out his anger at bwusa.org

what an ass, who ever did this.
Aurious
Profile Blog Joined April 2006
Canada1772 Posts
June 05 2008 02:02 GMT
#20
Like I said Xeris talk to steve, same guy hacked sMi site to he has the IP
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 02:05 GMT
#21
ya I know... he's investigating it, we'll find out who did it soon. vengeance shall be had.
twitter.com/xerislight -- follow me~~
MoNKeYSpanKeR
Profile Blog Joined May 2007
United States2869 Posts
June 05 2008 02:27 GMT
#22
the site looks fine to me, what exactly is wrong with it?

Also sorry to hear it Xeris. I wonder who did it?
<3's Mani and Seraphim, thx for the second chance. TSL Name: TSL-mSLeGenD
MoNKeYSpanKeR
Profile Blog Joined May 2007
United States2869 Posts
June 05 2008 02:31 GMT
#23
also will this delay tomorrow YL? I'm playing in it and if you reschedule i might not be able to play since i could be working.
<3's Mani and Seraphim, thx for the second chance. TSL Name: TSL-mSLeGenD
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 02:32 GMT
#24
yes, tomorrow it will continue as planned.

it was fixed, just all the forum data was lost...
twitter.com/xerislight -- follow me~~
Centric
Profile Blog Joined March 2008
United States1989 Posts
June 05 2008 02:44 GMT
#25
That really sucks man...hope you can get it all together quickly. Also hope you find the bastard.
Super serious.
FragKrag
Profile Blog Joined September 2007
United States11549 Posts
June 05 2008 02:44 GMT
#26
Why is this in a blog? It should definitely be a post in the BW forum.
*TL CJ Entusman #40* "like scissors does anything to paper except MAKE IT MORE NUMEROUS" -paper
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 03:56 GMT
#27
who the hell cares where it is -________-; blog is the same shit as a forum post anyways, it's the exact same format, it's just in a different subsection of the site
twitter.com/xerislight -- follow me~~
Skew
Profile Blog Joined October 2006
United States1019 Posts
June 05 2008 05:23 GMT
#28
Sorry Xer.

I don't *think* you can track an XSS/SQL injection wipe on the DB as the content that caused it would also be wiped... someone correct me if I'm wrong, but good luck anyways. Daily DB backups next time around.
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 05:55 GMT
#29
ya , we're going to start doing daily backups
twitter.com/xerislight -- follow me~~
Xeln4g4
Profile Joined January 2005
Italy1209 Posts
June 05 2008 08:15 GMT
#30
retarded idiots are everywhere ...
yenta
Profile Blog Joined April 2006
Poland1142 Posts
June 05 2008 09:08 GMT
#31
You should be taking daily dumps of your database. I don't see it as being so big that it would matter. Just add it as a shell command to your crontab, one line to save the days dump as some date-valued file, another to delete backups older than say a week.
Trutacz Practice Discord - https://discord.gg/PWF7Pv
yenta
Profile Blog Joined April 2006
Poland1142 Posts
June 05 2008 09:16 GMT
#32
On June 05 2008 14:23 Skew wrote:
Sorry Xer.

I don't *think* you can track an XSS/SQL injection wipe on the DB as the content that caused it would also be wiped... someone correct me if I'm wrong, but good luck anyways. Daily DB backups next time around.


Logs?

Check your db logs - if they are set up right they should have a record of the statement that caused the wipe.

Also. you should be logging any input that is not standard, or since its a small site, just log all input and clean your logs once they are older than a week.
Trutacz Practice Discord - https://discord.gg/PWF7Pv
Jank
Profile Blog Joined March 2008
United States308 Posts
June 05 2008 10:24 GMT
#33
Probably the result of sql injection. Make sure you patch the hole and not just restore everything and pretend it never happened. Go through all your code making sure all the input is properly sanitized.
"You don't know you're wearing a leash if you sit by the peg all day." - Michael Parenti
QuanticHawk
Profile Blog Joined May 2007
United States32044 Posts
June 05 2008 12:26 GMT
#34
If I remember, steve said it was an sql, cuz the smi site got hacked yesterday too.
PROFESSIONAL GAMER - SEND ME OFFERS TO JOIN YOUR TEAM - USA USA USA
MasterOfChaos
Profile Blog Joined April 2007
Germany2896 Posts
June 05 2008 14:16 GMT
#35
If the attacker was not entirely supid(which is well possible, 1337 scriptkiddies often are) then your IP will be a random TOR exitnode, or an open wlan.
Did you already find out how he killed your db?
LiquipediaOne eye to kill. Two eyes to live.
Flaccid
Profile Blog Joined August 2006
8835 Posts
June 05 2008 17:45 GMT
#36
Not much detail is given in this blog post, so here is a link to what happened:

Description of hack

To quote this guy's post:

This is a Windows vulnerability. What the hacker did was attempt to run around the code and gain access to the asp.net Windows Media Player library via our /images/ folder. They found an image they liked, They ran a some kind of script, and gained access to run a sql instertion script that the application itself did not allow.

Sneaky fucker.

Apparently, this a vulnerability that Microsoft put out a patch to, and our hosting provider didn’t run it against our VPS yet.

So to protect your server against this hack, have your hosting provider run the latest updates for the vulnerability.


So it's really not a matter of basic SQL-injection. That stuff is protected against in the code in several different ways. It's a server-side vulnerability that is exploited and something most people have no control over. The only sites at risk are those running on a Windows server. Just do a google search and you'll see the hundreds of thousands of sites that have been hit in this way.

Point being we have to go a roundabout way to prevent this from happening again, and again, and again... and again.....

That's the internet for you.
I'd rather have a bottle in front of me than a frontal lobotomy
Jonoman92
Profile Blog Joined September 2006
United States9103 Posts
June 05 2008 18:29 GMT
#37
I wondered what was going on. I was looking for the thread with the info about my challenge and I realized the most recent threads were from a while ago.
Goosey
Profile Blog Joined September 2005
United States695 Posts
Last Edited: 2008-06-05 18:37:28
June 05 2008 18:36 GMT
#38
That sucks. :| I am surprised your host doesn't do regular backups

edit: oh and they run Windows Server? Unless you are reliant on that software stack I would recommend switching hosts for sure. Daily backup is pretty much standard.
#1 Shuttle Fan.
nofAcedAgent
Profile Blog Joined July 2007
United States952 Posts
Last Edited: 2008-06-05 19:27:47
June 05 2008 19:27 GMT
#39
On June 05 2008 12:56 Xeris wrote:
who the hell cares where it is -________-; blog is the same shit as a forum post anyways, it's the exact same format, it's just in a different subsection of the site



Chill yo~ I think he just meant it would get noticed by more people in the brood war section, hes not the one that hacked you, control your rage (;p) (not that I know the benefit of having more viewers)

Anyway, hope the bastard gets caught man, sorry to hear it
Xeris
Profile Blog Joined July 2005
Iran17695 Posts
June 05 2008 22:00 GMT
#40
Apparently whoever did it tried to do it again last night and today -___________- !!

Woo I hope whoever hacked my site shows up to a LAN.
twitter.com/xerislight -- follow me~~
Flaccid
Profile Blog Joined August 2006
8835 Posts
Last Edited: 2008-06-06 20:06:17
June 06 2008 20:05 GMT
#41
So they just tried it again about 30 minutes ago and instead found themselves redirected to lemonparty.org.

Life's a bitch.

I guess things are good now, that is until they find some new way to do us up the butt.
I'd rather have a bottle in front of me than a frontal lobotomy
G5
Profile Blog Joined August 2005
United States2897 Posts
June 13 2008 23:53 GMT
#42
that sux yo

try and get his ip and catch the fucker
G5
Profile Blog Joined August 2005
United States2897 Posts
June 13 2008 23:53 GMT
#43
i would call the cops and have them arrest that jackass, press charges and all

fuck that pisses me off
Normal
Please log in or register to reply.
Live Events Refresh
Next event in 24m
[ Submit Event ]
Live Streams
Refresh
StarCraft 2
EnDerr 95
StarCraft: Brood War
Calm 6724
Sea 5403
Jaedong 1671
Bisu 1243
Horang2 1209
Hyuk 793
Pusan 450
EffOrt 228
Zeus 184
hero 135
[ Show more ]
Dewaltoss 116
Mini 109
Rush 92
Last 89
Light 79
Leta 60
ggaemo 58
ZerO 55
ToSsGirL 40
sSak 34
Killer 34
Sharp 24
Hyun 24
Mong 18
Free 17
Shine 17
GoRush 15
Backho 15
Yoon 13
HiyA 12
ajuk12(nOOB) 11
SilentControl 6
JulyZerg 5
Dota 2
XcaliburYe924
BananaSlamJamma432
Fuzer 186
PGG 169
Counter-Strike
shoxiejesuss939
x6flipin204
allub165
Super Smash Bros
Mew2King109
Other Games
singsing1367
ceh9588
crisheroes157
Pyrionflax157
XaKoH 87
ZerO(Twitch)11
Has8
Organizations
Dota 2
PGL Dota 2 - Main Stream1963
Other Games
gamesdonequick656
StarCraft: Brood War
UltimateBattle 28
lovetv 8
StarCraft 2
Blizzard YouTube
StarCraft: Brood War
BSLTrovo
sctven
[ Show 12 non-featured ]
StarCraft 2
• StrangeGG 59
• AfreecaTV YouTube
• intothetv
• Kozan
• IndyKCrew
• LaughNgamezSOOP
• Migwel
• sooper7s
StarCraft: Brood War
• iopq 6
• BSLYoutube
• STPLYoutube
• ZZZeroYoutube
Upcoming Events
WardiTV Qualifier
24m
Bellum Gens Elite
1h 24m
OSC
5h 24m
The PondCast
23h 24m
Bellum Gens Elite
1d
WardiTV Invitational
1d
Replay Cast
1d 13h
OSC
1d 13h
Bellum Gens Elite
2 days
WardiTV Invitational
2 days
[ Show More ]
Replay Cast
2 days
CranKy Ducklings
2 days
SC Evo League
3 days
Bellum Gens Elite
3 days
Fire Grow Cup
3 days
CSO Contender
3 days
Replay Cast
3 days
SOOP
3 days
SHIN vs GuMiho
Sparkling Tuna Cup
3 days
AllThingsProtoss
4 days
Fire Grow Cup
4 days
Replay Cast
4 days
Replay Cast
5 days
Replay Cast
5 days
WardiTV Invitational
6 days
GSL Code S
6 days
Rogue vs GuMiho
Maru vs Solar
Liquipedia Results

Completed

CSL Season 17: Qualifier 1
DreamHack Dallas 2025
Heroes 10 EU

Ongoing

JPL Season 2
BSL 2v2 Season 3
BSL Season 20
KCM Race Survival 2025 Season 2
NPSL S3
Rose Open S1
CSL Season 17: Qualifier 2
2025 GSL S2
Bellum Gens Elite Stara Zagora 2025
BLAST.tv Austin Major 2025
ESL Impact League Season 7
IEM Dallas 2025
PGL Astana 2025
Asian Champions League '25
ECL Season 49: Europe
BLAST Rivals Spring 2025
MESA Nomadic Masters
CCT Season 2 Global Finals
IEM Melbourne 2025
YaLLa Compass Qatar 2025
PGL Bucharest 2025
BLAST Open Spring 2025

Upcoming

CSL 17: 2025 SUMMER
Copa Latinoamericana 4
CSLPRO Last Chance 2025
CSLAN 2025
K-Championship
SEL Season 2 Championship
Esports World Cup 2025
HSC XXVII
Championship of Russia 2025
Murky Cup #2
BLAST Bounty Fall 2025
BLAST Bounty Fall Qual
IEM Cologne 2025
FISSURE Playground #1
TLPD

1. ByuN
2. TY
3. Dark
4. Solar
5. Stats
6. Nerchio
7. sOs
8. soO
9. INnoVation
10. Elazer
1. Rain
2. Flash
3. EffOrt
4. Last
5. Bisu
6. Soulkey
7. Mini
8. Sharp
Sidebar Settings...

Advertising | Privacy Policy | Terms Of Use | Contact Us

Original banner artwork: Jim Warren
The contents of this webpage are copyright © 2025 TLnet. All Rights Reserved.