Got Exploited?
Our jackass server administrators got our servers Hax0r3d. A leech site was set up on one of the production web servers and has been running for weeks. Warez, appz, gamez, etc. 22 GB worth. To their credit, as soon as they figured it out they shut out all FTP access to the servers. Nice work, boys.
The strange thing is, I had nothing to do with it.
It started when I was email-asked by one of the admins if I had uploaded some mp3 and movie files up on the server. The question was immediately followed with something along the lines of, "It's okay if you did, although no personal data should stay on the servers -- yadda, yadda, yadda." I can understand why they would suspect me. I'm the rogue employee and one of the only other people here who knows that FTP has nothing to do with marketing or advertising. So after I was asked, I had to think about it and started getting a little worried. Did I leave some crap on the servers? No, I'm pretty sure I have never put any personal crap up on the servers. All of that goes on to CD-Rs I steal from work and burn to take home. But before I replied back, I did a remote desktop in to the server and came upon the offending directories. Holy crap! Then I started laughing. Nope, not my stuff.
They figure it was some script kiddies who exploited another Microsoft server before the OS could be appropriately patched. Nelly and REM? If you say so.
The strange thing is, I had nothing to do with it.
It started when I was email-asked by one of the admins if I had uploaded some mp3 and movie files up on the server. The question was immediately followed with something along the lines of, "It's okay if you did, although no personal data should stay on the servers -- yadda, yadda, yadda." I can understand why they would suspect me. I'm the rogue employee and one of the only other people here who knows that FTP has nothing to do with marketing or advertising. So after I was asked, I had to think about it and started getting a little worried. Did I leave some crap on the servers? No, I'm pretty sure I have never put any personal crap up on the servers. All of that goes on to CD-Rs I steal from work and burn to take home. But before I replied back, I did a remote desktop in to the server and came upon the offending directories. Holy crap! Then I started laughing. Nope, not my stuff.
They figure it was some script kiddies who exploited another Microsoft server before the OS could be appropriately patched. Nelly and REM? If you say so.
0 Comments:
Post a Comment
<< Home