Salam to all my readers. Well, I believe some of you already know what is a phishing. According to Wikipedia,
phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication.
In a simple word, my blog server, AdlanKhalidi.com has been hacked with a phishing attack. Out of nowhere, the hacker has installed Bank of America phishing page into my themes folder. Check the screen shot.
[singlepic=322,320,240,,center]
Personally and honestly, I don’t know how it works and I don’t really care about it. So, let me tell you how it happens.
Thursday, February 5, 2009
On my way back home from UIA, I received a call from Robot regarding a phishing activity. He wanted to confirm with me whether I know about it. I told him I have nothing to do with it.
I’ve checked my email with the subject ‘Security Alert’ from my hosting admin. Eventually, Bank of America has contacted JARING to inform about one of the server (AdlanKhalidi) has a phishing site. They asked me to redirect the site to a AntiPhishing website.
But then, after I’ve redirected the lenghty URL, it doesn’t work. I believe that the hacker has install some script that stops the URL redirect.
Friday, February 6, 2009
My entire blog server was blocked. I’m unable to view my blog and my server.
Sunday, February 8, 2009
Just before I wrote this entry, I’ve tried to delete the whole phishing folder inside my server. Guess what? It can’t be deleted, the server log said that: Permission denied.
So, I’ll have to ask for my hosting Master Admin to help me delete all those nasty folders.
Lesson: Increase the security of your password
Guess this is one of the lesson I should have taken earlier. My original password is way too easy. Its going to take less than 30 minutes for someone to hack into my server. So, some of the tips in choosing a password are:
-At least 8 characters in length
-At least 1 number
-At least 1 special character
-Upper and lowercase.
Read more about Good Password Tips and Password Management.
I hope this thing won’t happen again. It may happen to anyone of us. Is there any Malay term for phishing? Can I suggest ‘Panching’ or ‘Pancheng’ as a translation for it to DBP?
tu la bro…
yg pling penting clear smua history n cookies lps browse dr mne2…
even dr comp sndri..
ak pon pnh kne…
siap trtukar password akaun aku…
nsb baik leh kontrol blik dr cpanel…
klau x…
masak….
zelo55 latest post: Lawak Hari Sabtu.
thanks for the tips bro.
maklum la selalu login tapi lupa nak logout especially kalo da klas kat lab..
irritating kn bnda ni.. 🙂
saffa pun da taubat klu online kt mkml comp.. mmg hati2 sket…
saffa latest post: This is Saffawati’s Blog
tu la bro…
yg pling penting clear smua history n cookies lps browse dr mne2…
even dr comp sndri..
ak pon pnh kne…
siap trtukar password akaun aku…
nsb baik leh kontrol blik dr cpanel…
klau x…
masak….
zelo55 latest post: Lawak Hari Sabtu.
thanks for the tips bro.
maklum la selalu login tapi lupa nak logout especially kalo da klas kat lab..
irritating kn bnda ni.. 🙂
saffa pun da taubat klu online kt mkml comp.. mmg hati2 sket…
saffa latest post: This is Saffawati’s Blog
huh..bleh jadi sampai macam tu?thats just evil…thanks for the advice..im definitely gonna take some extra caution..
‘panceng’ pun boleh kot…hehe “baik punya”
TipsGoda latest post: Using ‘MAGIC SPELLS’ To Make A Girl Falls For You?
haha. panceng pun OK kot..
lebih baik mencegah dari merawat.. tibe2 plak
huh..bleh jadi sampai macam tu?thats just evil…thanks for the advice..im definitely gonna take some extra caution..
‘panceng’ pun boleh kot…hehe “baik punya”
TipsGoda latest post: Using ‘MAGIC SPELLS’ To Make A Girl Falls For You?
haha. panceng pun OK kot..
lebih baik mencegah dari merawat.. tibe2 plak
macam2 la skang ni kan..
skang baru tau phishing 2 ape….
Callister latest post: Darwin Award
sebelum ni memang da tau da. banyak kes Maybank2u dan CIMB jadi phishing site. tapi tak sangka plak kali ni sendiri jadi ‘penaja’ tak rasmi phishing site omputih ni..
hehe..the choosen je yang dpt..
Callister latest post: Darwin Award
macam2 la skang ni kan..
skang baru tau phishing 2 ape….
Callister latest post: Darwin Award
sebelum ni memang da tau da. banyak kes Maybank2u dan CIMB jadi phishing site. tapi tak sangka plak kali ni sendiri jadi ‘penaja’ tak rasmi phishing site omputih ni..
hehe..the choosen je yang dpt..
Callister latest post: Darwin Award
waahhh….scary ek.
kalaulah kene kat inna,
tak tau la nak buat ape kot….
thanks adlan for d info….
inna latest post: aku n sahabatku kawin lagi…lalalala…
you are welcome. takde hal. saja sharing2 dgn kawan2 supaya berhati2 di alam siber ni..hehe
kalo pakai blogspot, insyaAllah tak jadi nye. kalo tak nanti Google kena saman!
waahhh….scary ek.
kalaulah kene kat inna,
tak tau la nak buat ape kot….
thanks adlan for d info….
inna latest post: aku n sahabatku kawin lagi…lalalala…
you are welcome. takde hal. saja sharing2 dgn kawan2 supaya berhati2 di alam siber ni..hehe
kalo pakai blogspot, insyaAllah tak jadi nye. kalo tak nanti Google kena saman!
owh…nice info.scary giler kner bender nih..tpi biasernyer mender ni adalah hobi phisher2. tujuan adalah utk menguji sekuriti yg mereka sendiri develop…tol tak?
~dlm bahasa melayu mungkin “digodam”
omar s latest post: Apakah?
yep. hacked tu boleh diterjemah sebagai digodam. tapi untuk ‘phishing’ camne plak kan..?
tapi memang pelik la kalau developer wordpress sendiri yg test power. wat la kat blog orang lain. apahal aku yg jadi mangsa plak? hobi yg menyusahkan orang je..
owh…nice info.scary giler kner bender nih..tpi biasernyer mender ni adalah hobi phisher2. tujuan adalah utk menguji sekuriti yg mereka sendiri develop…tol tak?
~dlm bahasa melayu mungkin “digodam”
omar s latest post: Apakah?
yep. hacked tu boleh diterjemah sebagai digodam. tapi untuk ‘phishing’ camne plak kan..?
tapi memang pelik la kalau developer wordpress sendiri yg test power. wat la kat blog orang lain. apahal aku yg jadi mangsa plak? hobi yg menyusahkan orang je..
uiks! i tak penah tau psl phishing nih
skrg baru tau
thanks for the info! 😀
Adila latest post: I LOVE photoshop!
sure do. you are welcome.
let’s go phishing! haha
uiks! i tak penah tau psl phishing nih
skrg baru tau
thanks for the info! 😀
Adila latest post: I LOVE photoshop!
sure do. you are welcome.
let’s go phishing! haha
huish… bahaya jugak ek… kalau aku kena macam ni… tak tau la aku nak wat apa…
Adry latest post: Perak oh Perak…
apa nak risau.. ko kan ada ramai kawan2 kat internet ni. pasti diorang boleh membantu. especially minta bantuan webhosting tula. time ni baru leh tengok kepakaran diorang nak handle2 benda camni..
huish… bahaya jugak ek… kalau aku kena macam ni… tak tau la aku nak wat apa…
Adry latest post: Perak oh Perak…
apa nak risau.. ko kan ada ramai kawan2 kat internet ni. pasti diorang boleh membantu. especially minta bantuan webhosting tula. time ni baru leh tengok kepakaran diorang nak handle2 benda camni..
perlu la phishing nak suggest jd ‘Panching’ or ‘Pancheng’? lucu la adlan.
eh2.. suka hati la nak translate. asyik2 pinjam istilah omputih je.. camne bahasa Melayu nak maju..
lucu la myss..
perlu la phishing nak suggest jd ‘Panching’ or ‘Pancheng’? lucu la adlan.
eh2.. suka hati la nak translate. asyik2 pinjam istilah omputih je.. camne bahasa Melayu nak maju..
lucu la myss..
wow..sampai camtu skali payahnye nak solve..mmg bahaya ek..harap2 x kene,kalau nasib x baik karang meraung x sudah la nanti nye..huhuhu
haha. ko pakai blog friendster.. pasti selamatnya.. kalo tak, nanti macam ari tu la time friendster kena hack.. mesti sume orang meraung!
wow..sampai camtu skali payahnye nak solve..mmg bahaya ek..harap2 x kene,kalau nasib x baik karang meraung x sudah la nanti nye..huhuhu
haha. ko pakai blog friendster.. pasti selamatnya.. kalo tak, nanti macam ari tu la time friendster kena hack.. mesti sume orang meraung!
huihhh..kena beware gakk nii.. hurmmmm
shino latest post: Malam Ini
aiyah. don’t worry la. ko kan pakai blogspot. pasti secure nye. cuma part password tu la kena hati2 gak..
huihhh..kena beware gakk nii.. hurmmmm
shino latest post: Malam Ini
aiyah. don’t worry la. ko kan pakai blogspot. pasti secure nye. cuma part password tu la kena hati2 gak..
phising ni boleh jadi kat saper?tau tak?saje nak mendalami skit dalam ilmu phsing ni..
ntah la TG.. aku pun tak mengerti..
tapi kes phishing banyak la berlaku kt orang2 yang tak arif pasal keselamatan siber ni..
dan jugak utk orang2 yg alpa n cuai utk logout kalau guna kat public computer seperti kat cybercafe
phising ni boleh jadi kat saper?tau tak?saje nak mendalami skit dalam ilmu phsing ni..
ntah la TG.. aku pun tak mengerti..
tapi kes phishing banyak la berlaku kt orang2 yang tak arif pasal keselamatan siber ni..
dan jugak utk orang2 yg alpa n cuai utk logout kalau guna kat public computer seperti kat cybercafe
fuh dahsyat siot. anggap ini satu pengajaran untuk kita berhati-hati, huhu T_T
darkz05 latest post: Aku Bukan Superstar! =P
dahsyat gak la.. berhati-hati di jalan raya jugak!! haha jgn sedey2
fuh dahsyat siot. anggap ini satu pengajaran untuk kita berhati-hati, huhu T_T
darkz05 latest post: Aku Bukan Superstar! =P
dahsyat gak la.. berhati-hati di jalan raya jugak!! haha jgn sedey2
tibe2 jadi bank of america…dahshat tu….
ni mesti beware kan pasni…dah tukar ke password tu??
limaumaniss latest post: vote jangan tak vote…
ye.. sudah tukar.. yg ni kalo nak hack kena amek masa 10 jam plak.. haha
tibe2 jadi bank of america…dahshat tu….
ni mesti beware kan pasni…dah tukar ke password tu??
limaumaniss latest post: vote jangan tak vote…
ye.. sudah tukar.. yg ni kalo nak hack kena amek masa 10 jam plak.. haha
wo. macam parasit pulak.
btw, why it choose adlankhalidi.com as its nest? high potential? uhu.
alone latest post: I Deserved It
haha.. not la high potential. maybe my blog has the lowest security features and easy password.. hehe
wo. macam parasit pulak.
btw, why it choose adlankhalidi.com as its nest? high potential? uhu.
alone latest post: I Deserved It
haha.. not la high potential. maybe my blog has the lowest security features and easy password.. hehe
memang diorang suka target banyak web..tapi pelik gak, blog personal pun dia target..huhu
aman latest post: Microsoft Memperkenalkan Fungsi Baru Untuk Hotmail
tula pasal. dalam banyak2 blog personal kat US tu, blog orang Malaysia plak kene target!
memang diorang suka target banyak web..tapi pelik gak, blog personal pun dia target..huhu
aman latest post: Microsoft Memperkenalkan Fungsi Baru Untuk Hotmail
tula pasal. dalam banyak2 blog personal kat US tu, blog orang Malaysia plak kene target!
maybe blog ni ‘special’ kot.hehe..maybe they are targeting us?
TipsGoda latest post: 17+ Cute Gifts Ideas For Valentine’s Day.Do You Have Any Ideas?
huhu.. nothing really special apart of low security features.. wordpress is easy to hack. that’s what i’ve learnt from this incident
maybe blog ni ‘special’ kot.hehe..maybe they are targeting us?
TipsGoda latest post: 17+ Cute Gifts Ideas For Valentine’s Day.Do You Have Any Ideas?
huhu.. nothing really special apart of low security features.. wordpress is easy to hack. that’s what i’ve learnt from this incident
whoa..phishing site…whoa…kau taja apa nie?
xmindfreakx latest post: Secebis Lagu untuk Semua
haha. aku la plak yang taja.. kalo aku betul2 jahat, da jadi kaya raya da dengan aktiviti memanceng ni.. huhu
whoa..phishing site…whoa…kau taja apa nie?
xmindfreakx latest post: Secebis Lagu untuk Semua
haha. aku la plak yang taja.. kalo aku betul2 jahat, da jadi kaya raya da dengan aktiviti memanceng ni.. huhu
kalau buat boleh jadi kaya,dont forget to invite me!hahhaha…
TipsGoda latest post: 22 Creative and Romantic Things to Do on Your Valentine’s Day Date
kalau buat boleh jadi kaya,dont forget to invite me!hahhaha…
TipsGoda latest post: 22 Creative and Romantic Things to Do on Your Valentine’s Day Date
tahniah!
nabil latest post: Kesan Kegawatan Eknomi Dunia Terhadap Industri Elektronik
ape hal plak.. haha.. sarkastik skali ye..!
tahniah!
nabil latest post: Kesan Kegawatan Eknomi Dunia Terhadap Industri Elektronik
ape hal plak.. haha.. sarkastik skali ye..!
S.C.A.R.Y… gilerr
nono latest post: You are invited!
yeah.. scary la jugak.. are you scared bcos u spell the scary word? 😛
S.C.A.R.Y… gilerr
nono latest post: You are invited!
yeah.. scary la jugak.. are you scared bcos u spell the scary word? 😛
seramnya perkara ini. baik. operasi tukar password secara besar-besaran akan dimulakan ASAP! thanks for the post.
selamat menukar password yea! sudah tiba masanya utk berubah! (tiber plak)
seramnya perkara ini. baik. operasi tukar password secara besar-besaran akan dimulakan ASAP! thanks for the post.
selamat menukar password yea! sudah tiba masanya utk berubah! (tiber plak)
wah..sgt kesian….huhuhuh
terima kasih sebab kasihan dgn sy.. huhuh balik..
wah..sgt kesian….huhuhuh
terima kasih sebab kasihan dgn sy.. huhuh balik..
owh mcmtu ke… cm complicated je mende2 yg ang nk del tu ek. blogspot jela adlan, hidup aman n tenteram. duit pun xmengalir keluar.
eh kenal ke robot? mcmne ley kenal?
d Third Child latest post: Ads: Forum on Valentine’s…Love is in the air!
haha. memang la duit tak keluar. tapi saje. cambest ada domain sendiri.. hehe
saya kenal dgn robot sejak 2006 lagi time join program taaruf week kt UIA. actly kalo search nama ‘robot’, memang banyak kali bleh jumpa dlm blog ni.. hehe
owh mcmtu ke… cm complicated je mende2 yg ang nk del tu ek. blogspot jela adlan, hidup aman n tenteram. duit pun xmengalir keluar.
eh kenal ke robot? mcmne ley kenal?
d Third Child latest post: Ads: Forum on Valentine’s…Love is in the air!
haha. memang la duit tak keluar. tapi saje. cambest ada domain sendiri.. hehe
saya kenal dgn robot sejak 2006 lagi time join program taaruf week kt UIA. actly kalo search nama ‘robot’, memang banyak kali bleh jumpa dlm blog ni.. hehe
Facebook Account Hacker