Advertisement

You're blocking ads, which pay for BlenderNation. Read about other ways to support us.

BlenderNation Hacked, Back

36

hacked.pngLast night we started receiving reports of spam links appearing under each page on BlenderNation. Investigation showed that a number of files had been compromised, probably because of our WordPress installation being out of date. As I was in bad need of some sleep, my ISP and I decided to shut down the site for the night, and fix things in the morning.

Today I cleaned the entire site and performed a WordPres upgrade. The only function that didn't work after the upgrade is the Event Calendar. I'll look into this, but I think it'll be offline for a while. Before I put too much time into it, I do wonder though: how many people actually use the calendar? Do you need it back?

A final note: if you have a registered account here, it's a wise precaution to change your password.

About the Author

Avatar image for Bart Veldhuizen
Bart Veldhuizen

I have a LONG history with Blender - I wrote some of the earliest Blender tutorials, worked for Not a Number and helped run the crowdfunding campaign that open sourced Blender (the first one on the internet!). I founded BlenderNation in 2006 and have been editing it every single day since then ;-) I also run the Blender Artists forum and I'm Head of Community at Sketchfab.

36 Comments

  1. good grief...some people just have too much time on their hands, and have nothing better to do than destroy honest peoples work. my site was (2 of my domains, actually) got hacked. cleaning everything up, patching, giving thought to the backups one should have done ;-) and so on are a real pain.

    thumbs up for getting the site up and running so fast!

    ps. i dont use the calendar either...

  2. I see the calendar often, but there are very rarely events in the UK where I am. I don't think it's something you really 'use' so much as something that you notice one day and think, "Wow, there's a Blender meet down the road!" if you get my drift. From that perspective it's useful, but I don't think anyone's going to be sobbing if it goes ;)

    Thanks for the hard work!

  3. The message said it would be up on Sunday!!! Glad it didn't take that long!

    No, I don't use the calender, but now that I know about it, I might.

  4. I like the calendar, even if more than 95% of the events do not concern me directly. It's good to have an overview over all those Blender events around the world - and quite some events have cool websites as well :D
    Also: As DJ Tull mentioned already ... maybe there is one of those events down your road when you least expect it.
    That doesn't mean I/we can't live without it for some time ;)

    Werner

  5. I've wondered about strange links in the article about the "car model repository". Maybe I should have posted this topic in a different way.

  6. If it's too much work, I think I'd just have to let you know that I don't use it. But if otherwise, it's a handy thing to have. :)

  7. wut's a calender?

    Thanks, for the heads up about the hacked site, you think someone would trace back the ads and hack back the company that they promoted.

    Speaking of, what products was this pushing?

    *Also, I'm not lurking in the shadows as much, so it's nice to informally introduce myself.*

  8. Don't use the calendar (not much around here), but do like it - I wonder if it'd be possible to extend it for community events as well as training and major events?

  9. They were mostly promoting drugs, and were hosted on a college server FFS! I wonder if their admin fixed things as quickly as Bart and co did here?

  10. I had a site for about 2 years (about 80,000 hits altogether and for a while typing in the site name would get you hit 1 from Google). I would get attempted hacks about every 5 minutes. Mostly I ignored things (I did keep site security fairly tight), and block IP addresses where the spam would originate from (although I usually suspected they were from a hijacked machine or a war-driven open wifi connection or something 'encrypted' with the very open and crackable wep protocol). Eventually with enough attempts and SQL injection, they managed to break into the site. I locked the site down for a few weeks, but it was a pain to have a very locked site (very read only, little viewer feedback). I would have to replace a lot of the software and so decided to take it down (I had time for maintenance, but not a site rebuild). Good work on rebuilding though. Even the Blender homepage depends on Blender Nation for news.

  11. i like the calender but as mention before...there not much that affect my era eather (south Africa). thou the comment to extend the calendar to "training and major events" and other events related to blender woul be cool...

    but from me, theres no pressure toget it back up

  12. Well, it looks like the college site is still hacked :(

    In fact, yikes! Alot of college servers have been hacked in the same way :(

    Check this by Googling for "site:.edu xanax". If you see your college/school in the hits, let the IT dept know.

  13. Ah well... if you host a popular site, you gotta expect to get it hacked once in a while! Still, the people that do this sorta thing; they can't seriously expect people to buy drugs from some dodgy ad!! The sort of people these things are aimed at are morons - I mean, come on, they're not exactly the kind of users that Blender attracts!! As for the calendar, well I never used it anyway! ;)

    ~epat. :)

Leave A Reply

To add a profile picture to your message, register your email address with Gravatar.com. To protect your email address, create an account on BlenderNation and log in when posting a message.

Advertisement

×