• For users coming over from tmlfans.ca your username will remain the same but you will need to use the password reset feature (check your spam folder) on the login page in order to set your password. If you encounter issues, email Rick couchmanrick@gmail.com

Sincere Apologies - please read

Rick C.

Site Owner
Staff member
We have been hacked three times in the past 3 days.  I did everything I could to remedy it. My host, Siteground, did everything they could. Our friend Jeff Lewis looked at it and didn't have a good solution - and neither did his techie friends.

So I resorted to deleting everything off the TMLfans servers, except for the forums.  And was forced to do a backup from BEFORE the issues started.  A week ago.  So we lost all posts from the last week.  I hated doing that - but it was the only thing I could try.

Sorry!  Go Leafs go!
 
No need to apologize, Rick. Thanks for all the hard work.

If only the Leafs could erase the last week or two of their season...
 
These freaking hackers are such asses. Destruction for no reason.  This was one of the hacks. They used a script to change every board, topic and post title to this.  Pure evil.  Why the Habs? I'd rather they chose any other team - or a porn name.  Anything but the stupid Habs!

Evil-Hack.jpg
 
What I don't understand is why Tmlfans and why now? Is it related to the server change? I mean, you'd think they'd have enough security... So bizarre.
 
Bender said:
What I don't understand is why Tmlfans and why now? Is it related to the server change? I mean, you'd think they'd have enough security... So bizarre.

I really don't know.  It's the same server, we just upgraded the SMF forum software (three weeks ago when we had the long outage).  I have other websites on my server and they only hit the TMLfans area.  Bizarre indeed.
 
They must've slipped a backdoor in there to inject a SQL script; I assume all post, thread, board titles are stored in a database table and just that column got replaced with the same statement each time.
 
herman said:
They must've slipped a backdoor in there to inject a SQL script; I assume all post, thread, board titles are stored in a database table and just that column got replaced with the same statement each time.

Yeah I thought it was weird that that's all that was being affected.
 
herman said:
They must've slipped a backdoor in there to inject a SQL script; I assume all post, thread, board titles are stored in a database table and just that column got replaced with the same statement each time.

I agree. That's why I resorted to using a backup from a week ago.  My assumption is that Mr Hacker found access and uploaded something in the past three days. I've shut every possible backdoor that I could find.

We wait and see and cross fingers collectively. What a headache. This hacker is a small, idiotic, imbecile with no life.
 
Block all attachments and make sure every user entry field gets sanitized before the server runs

It doesn't seem like the database credentials were compromised
 
As others have said, nothing to be sorry about. Added bonus is the loss of the gameday threads!
Thanks for all your work.
 
Back
Top