patrick.net

Seems to have pissed off someone with enough knowledge to cause trouble.

lostand confused says

Wow-are we important enough to be hacked?

I hope it was the Saudis who hacked us because of all the mean things I say about them. On second thoughts, I don't think it was them. They don't have the brains to do something like that. Must be their goats.

oh no they removed all my ignores!

j/k

Yup, my one banner is gone. However, I still have my deluded follower.

jvolstad says

Does a Realtor live near you?

Like a Realtor has the skills to hack a website!

jazz_music says

he's snarky, disingenuous, self-glorifying and droll.

Thought that was a general description of all Patnetters!
....

Those that are so engrossed with technology will do nothing to stop hackers so could you please STFU.

jazz_music says

So is this Strategist's homepage now?

Was the reason the site came down to defeat banning the fucking trolls?

If you are such a delicate snowflake that you can't stand to read different opinions, kindly butt out and leave this site to those with a little more intestinal fortitude! The sheer arrogance of your position is obvious to everyone but you.

anonymous says

Benghazi !

DNC Headquarters Hackers !

RNC Headquarters Hackers !

Inside job by a disgruntled member ! ( How come we never see the term "gruntled" when describing someone ? )

CiC's Revenge !

False Flag and Conspiracy ! (Any moulage kits or smoking guns left behind ? )

A Trumpette !

A Clintonette !

Benghazi !

Antifa.

Patrick says

Patrick.net hacked!

@Patrick, is there any information on what the hacker(s) did besides briefly knocking the site offline? I'm wondering if the hack might presage a doxing campaign and/or adding people to an ISIL/Daesh kill list, in support of the "Muslim world plan against blasphemous content" that our government enables Pakistan to lead.

Pictures still not working.

Yes, will get pictures back soon.

curious2 says

is there any information on what the hacker(s) did besides briefly knocking the site offline?

I think they just found some data that was indigestible to my site by trying lots of things.

There was a flurry of hits from lots of different places, and some attempts to inject sql right before it went down. I can see that much from the nginx logs.

Unfortunately, the way I brought the site back was to restore the database from the previous night. I should have kept a copy of the bad data for analysis, but did not.

Can't upload images any more from my end.

Strategist says

And there are people like Jazz and Dan, who keep putting me on ignore, because they hate facts.

Facts?
www.youtube.com/embed/G2y8Sx4B2Sk

Patrick says

Patrick.net hacked!

Was that why it was down yesterday?

Yes, I don't know exactly how they did it, but fixed a few possible holes and have better monitoring in place now.

patnet needs a security consultant. and i mean a REAL one, not curious2.

They were after the porn!!

@Patrick, how old are your backups? How much is lost? New or old stuff?

It was the russians, we were getting close to the truth so they attacked with lucifer 6.66

justme says

Patrick, how old are your backups? How much is lost? New or old stuff?

There's a backup of the database every night at 3am. So posts and comments from 3am to 6pm on Sept 22nd were lost.

I should really have some more granular system for backing up. Maybe mysql replication.

So today I decided to google my email address. Until recently all one would find are some posts in a frog forum.

Well today shows my email address linked up with my pat net profile on some site that seems to mirror patnet:

https://whatdidyoubid.com/
I wonder if this is somehow related to the recent hack event?

This is a screen shot from google - I've erased my email address.

Woah, send me a screenshot: p@patrick.net

whatdidyoubid.com was a previous site of mine, run from the same server.

Interesting. Somehow google crawled it and picked off my email addy?

Saw just_passing-though's post. My email account is a burner and nothing linked to it. Did a search and here's a screenshot of the search result.

WookieMan says

My email account is a burner

I should have done the same. However, if Pat is able to take it down I suspect it'll eventually become un-indexed or something. Whatever happens in the long run with stale links.

Assuming Pat can take it down. O_o

Just some googling around and I found other ways people's email addresses are exposed. Notice the URLs are different:

Wow, if I search my email address on duckduckgo.com it takes me directly to my patnet profile:

/user/just_passing_through
Not sure why. My email address isn't in the page or page source. Perhaps in some metadata?

I didn't get the same result with duckdckgo.com that you did. Google linked me back with my email to whatdidyoubid.com site.

I'm also no longer getting any hits on my email with google either.

Must be left wing globalist damocrats evils at work

Status is still the same on my end. I'll just sit tight for now.

just_passing_through says

Status is still the same on my end. I'll just sit tight for now.

WTF. My screen shot was legit. I've now searched that email in two different browsers, logged into different email clients and that search result is gone that I posted with the screen shot. Even searched the exact address in the screenshot and all the info is gone on my end.

Ugh, this is terrible.

Just shot you an email Patrick.

just_passing_through says

if I search my email address on duckduckgo.com it takes me directly to my patnet profile:

@Patrick, I get the same result searching my e-mail address via Google. DuckDuckGo returns a bunch of pages that don't have my e-mail address.

@Patrick, when using Chrome to view PatNet in recent days, Malwarebytes blocked attempts to load several adware/malware sites. I have added them to my hosts file, with zeroes:

0.0.0.0 lenz.mx.com
0.0.0.0 popcash.net
0.0.0.0 oclaserver.com
0.0.0.0 tradexchange.com
0.0.0.0 venturead.com

The behavior seems specific to PatNet, and seems blocked by blocking scripts on the site and zeroing the domains in the hosts file. Repeated ADWCleaner and Malwarebytes scans of my system have found nothing on my machine.

In addition, the e-mail disclosure issue persists:

curious2 says

just_passing_through says

if I search my email address on duckduckgo.com it takes me directly to my patnet profile:

@Patrick, I get the same result searching my e-mail address via Google. DuckDuckGo returns a bunch of pages that don't have my e-mail address.

@curious2 I don't see any of those domains in any post or comment, so not sure why Malwarebytes would connect them to this site. Do you know which pages triggered the blocks? The only external scripts come from Youtube or Vimeo.