Niche-Listings.com got hacked!

Today I opened the niche-listings.com and saw this message:

 Hacked for Security

Code (markup):

Seems that got hacked.
Can anyone inform to owner?

 

Do a whois on the domain and that should give you the email address you need.

 

Site looks fine to me...

 

It seems hacked.
Check the bottom of the site. The hacker put up his image on it.

 

You're right.

Looks like Matthew7: http://forums.digitalpoint.com/member.php?u=33579

I'll send a PM.

 

what the purpose of the hacker? just for fun or money?

 

I Just talked with previous owner of this site about it. I think he forgot to change CHMOD permission to 755 From 777 that required.

 

Yup, ESyndicat 1.2 has a huge bug, can be fixed by making the /admin/ protected with the .htaccess

 

Well, regardless of the script, I really do not like to see peoples sites get wrecked.

If you want to pswd protect your admin folder use the link below that will create the necessary info for you to be placed in your htaccess and folders:
http://www.tools.dynamicdrive.com/password/

 

I used to do it for fun but mainly for educational purposes. I never vandalized anything but I would occasionally hide "X-pwned" in the page source when possible. Thats how the whole "exponent" thing came about. I mainly tested friends websites to make sure everything was secured but I tried my university once. I pointed out the flaw to the university and they promptly fixed it.

Afterwards, I would usually send an email that I found a security void. OS Commerce is particularly easy.

As for the "X-pwned", the letter "X" comes from the fact that I use a Macbook when hacking. It runs OS-X. (and I just like the letter). The "pwned" is from playing too many hours of Quake 3. I used "X" as my alias, and the combination of the two was just a fun way to see how long it took someone to fix or update a website.

 

eSyndiCat 1.x has huge bug discovered by my friend hack2prison
Show this: freeprotect.net?forum=12&thread=41