Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
-
So I accidentally published my AWS keys to GitHub, stupid me. I realize this the next day.
$ git reset
$ git push
Reset keys in AWS
I was too late. Bot already stole the keys and started up 53 EC2 instances. Racked up $4000+ of compute time (probably Bitcoin mining, I'd assume)
4 weeks later, I finally have this shit disputed and settled.
Don't test with hardcoded keys. You WILL forget about them. Env vars always. That is all.30 -
Got hacked in a day after deploying my first site. 😑 I just started developing. Well, I am thankful for that person to point it out to me otherwise I wouldn't have known.
33 -
I was drunk yesterday, watching Mr. Robot.
Woke up with Kali linux booted from a usb and a hacked WiFi password for my annoying vegan neighbor.33 -
*Me Coding with a laptop and desktop when friends enter *
Friends : u r a coder right? Hack something in front of me.
Me : *sick of explaining ppl*
*SSHs into lap from desktop and shuts it down*
See. I hacked my lap
Friends : whoa! Cool man9 -
Sitting on the bus updating my system.
Random girl: What are you using?
Me: Linux :).
Random girl: Ohh I use Mac, because that doesn't have viruses and can't get hacked!
*me waiting for a cliff to jump off*36 -
The moment when a client dumps you for a "cheaper solution" and after a year his site get hacked and calls you to rescue him. Priceless.5
-
I realized hacking was about being smart when at 14 i hacked into someones computer by guessing his password on the 2nd try.
The dude loved computers more than me and watched matrix all the time.
So i typed “neo”9 -
Someone hacked into a teacher's school district email, sending random stuff to the juniors.
When the principal sent an email saying any help in catching the perpetrator would be appreciated, a bunch of people from my classes were staring at me throughout the day.
Programmer != hacker
I hope they don't report me, I didn't do it. :/30 -
Found this guy at my school who was trying to impress n00bs around the place by using Inspect Element in Chrome to change the content of webpages. He was claiming that he hacked the website 😂😂😂 I'm still crying14
-
Dear diary,
Today I sold my soul... I hacked my way around a bug instead of refactoring. It was a moment of weakness... I... I was not given enough time....
I am sorry...8 -
I just started playing around with machine learning in Python today. It's so fucking amazing, man!
All the concepts that come up when you search for tutorials on YouTube (you know, neural networks, SVM, Linear/Logic regression and all that fun stuff) seem overwhelming at first. I must admit, it took me more than 5 hours just to get everything set up the way it should be but, the end result was so satisfying when it finally worked (after ~100 errors).
If any of you guys want to start, I suggest visiting these YouTube channels:
- https://youtube.com/channel/...
- http://youtube.com/playlist/...9 -
So my USB DVD drive needs more power than a normal USB port can deliver.
Normal Person: I'll bring it back to the store and get a diffrent one.
Me:
9 -
When you were growing up to be a developer and your mom brags about what a genius you were and has literally no idea what she was bragging about...
#IJustInstalledLinuxMomChill...
Funny story my step dad was bragging about me hacking Google to a group of his guys a few months ago (mind you I'm 21, he's a roofing contractor) and he calls me over and is like "yo, Jimmy. Tell them how you hacked google. (Obviously I never "hacked google", whatever that means) and this guy he's talking to say:
"Oh shit. You can do that shazz".
For my own amusement I replied:
"Yeah I hacked google last week. I HTML'd into their json databases to pull out an ASP in order to bash attack on their .Net services using only CSS"
Of course the man's only response at this point was to ask me how much it would cost me to build him a site...11 -
Funny story about the first time two of my servers got hacked. The fun part is how I noticed it.
So I purchased two new vps's for proxy server goals and thought like 'I can setup fail2ban tomorrow, I'll be fine.'
Next day I wanted to install NginX so I ran the command and it said that port 80 was already in use!
I was sitting there like no that's not possible I didn't install any server software yet. So I thought 'this can't be possible' but I ran 'pidof apache2' just to confirm. It actually returned a PID! It was a barebones Debian install so I was sure it was not installed yet by ME. Checked the auth logs and noticed that an IP address had done a huge brute force attack and managed to gain root access. Simply reinstalled debian and I put fail2ban on it RIGHT AWAY.
Checked about two seconds later if anyone tried to login again (iptables -L and keep in mind that fail2ban's default config needs six failed attempts within I think five minutes to ban an ip) and I already saw that around 8-10 addresses were banned.
Was pretty shaken up but damn I learned my lesson!8 -
So back story... I opened up my own company a while back. I provide not only general IT and phone repair etc but I also do ethical penetration testing and patch the holes.
Before opening my own business me and some buddy's went out to a bowling ally and bar to have a few drinks. I wanted to see what their network was like... I hacked into their entire network in less than two minutes. From my iPhone. I was in their switches, I was configuring their printers and fax machines. Lord knows what I could have done if I had my laptop.
Anyways, back to the rant... I got this text today. 😂😩🔫
18 -
The website i made has been hacked today.
Stored in their server.
They didnt give me an access for it.
The user account in the cms i used for updating content while building the website was revoked when the website is completed.
Now they ask me for the latest backup.
I have no backup because how the hell i do a backup when i got no access to the cpanel.
The only backup is the zip file for initial uploading into their server and the contents were added after the website is on their server.
That goddamn IT guy who wont give me any access for “securty sake” is calling me furiously asking for the backup and how to set up the stuffs from the beginning.
I thought he was the one who know his shit but i was wrong.
Fuck me?
No.
Fuck you.
But i still responding to him telling him step by step how to do shit with some swearing and sarcasm.
ALWAYS BACKUP YOUR SHITS, MATE7 -
SSH'd into all the computers in college's lab and edited the bashrc to display "YOU ARE BEING WATCHED / YOU'VE BEEN HACKED" etc.
Everyone freaked out instantly.
Then edited my own bashrc file too so that no one realizes it's me.
I was surprised at how easy it was.9 -
Saw a McDonald's today that's asking to be hacked - their menu sign's IP address is right there on the bottom of it (original image at https://i.imgur.com/P3sFGHE.jpg):
18 -
Our company got attacked last month by what i believe was a code time bomb from a ex employee. And it was brutal, website hacked, email server not responding, locked out from database servers. The IT department asked for my help and I was more than happy to do it. Long story short I got every thing back working smoothly. The IT guys ask for a favor to not include this in my monthly progress report. Fine by me. But then they went out and tokd the top management that they are teaching me about the networks and servers so thats why I was working with them last month. Fucking assholes. Not going to help them any more.4
-
watching CSI:
The cop (watching hacked tv broadcast): "This isn't live, is it?
The hacker girl: "I'll create GUI interface using Visual Basic, see if I can track the IP"
effin' gold, hope that GUI helped her12 -
Tonight I was getting ready to pay my monthly apartment maintenance bill so I Googled my property management company's name because I always forget the url. It's always the first result, but I noticed Google placed a little "This site may be hacked." line of text on their listing.
Seeing that before and knowing what it means, I went into the source for their index page, and to my suspicion, their WordPress installation was hacked with the standard invisible spam links.
I realize this happens to a lot of WordPress blogs, but this is an NYC property management company that is responsible for a lot of buildings and has millions of dollars in contracts. Normally I would inform them, but having dealt with them in the past I don't like them very much, but more importantly, I don't think they'd understand what I was saying because they are so technically inept. They might even think that because I found this, that I had something to do with it.
So devRant, it is up to you. What should I do?
22 -
Client got hacked and mauled to another dimension. Why? Telnet w/o limited login attempts. All because Sysadmin likes to have the option of bruteforcing in case he forgets his own password.. karma?10
-
https://google.com”f people near me wanted to show me something.
Person: Check out this zero-day exploit! I hacked into the system using a cloud-based cryptographically secure MD5 hash finite automata firewall HTML code API!
Me: Erm...what exactly did you hack?
Person: *shows screen while smirking*
It was a shell simulator website running “ping https://google.com”7 -
Client : *turns of their computer*
Us : Why did you shut the SSH connection?
Client : Weird things were happening I thought we were being hacked!
But what the fuck we told you we were doing tests you stupid ass2 -
Boss : "just" hack the google AdWords and show our company ad everywhere on google search"
"Don't you know that everything can be hacked?"
Me : "Ok, first let me ***k you."
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
I mean "let me hack you"9 -
Friend: My other friend said he hacked into the Pentagon, can you do it?
Me: ummm No
Friend: So you are not really a good developer then?
Me: ummm No...I guess
Friend: well I'm hanging out with that guy then, he is showing me ways to make hundreds of $ a day online.
Me: sigh...5 -
Indians in a nutshell...
X feature is unavailable in the paid version.
But X = a + b + c in other free softwares.
Problem hacked.
9 -
yesterday at school
girl in school:
have you even got a call from a company u hacked?
Wtf? i cant hack and i never did...27 -
Israeli government hackers hacked into Kaspersky’s network in 2015 and caught Russian government hackers red-handed hacking US government hackers with the help of Kaspersky.
In other words — Russia spying on America, Israel spying on Russia and America spying on everyone.10 -
Was watching a Chinese movie and there's a scene where someone is getting hacked, and this is the fucking code that they are show as the "hacking code". How hard would it have been to find something more legitimate than this?
If I hadn't had a few $0.69 hamburgers from McDonald's today, I would be more upset.
15 -
I just fired off my stickers e-mail !!
Oh and: R.I.P WPA
Also, get this: Website uses PHP V < 5, no HTTPS, shitty code..
It got hacked and guess what ? The website maintainers got surprised !!2 -
Friend: you're good with computers right?
Me: sure..
Friend: great so i signed up for this site that likes posts and i think they hacked my account
Me: ok... and?
Friend: well since you're good with computers do you think you could hack my account back?
Me: goodbye
People suck4 -
Nearing the end of my internship I got to sit in with a few interviews for new interns. We asked them in advance to take some of their code with them if possible.
So this guy walks in a suit and with briefcase puts his briefcase on the table and takes out a few laminated A4 printouts. That was his code. He didn't want to take a USB or laptop because he might be hacked by the company.
The whole interview only took 4 minutes from the moment he walked in.7 -
Wtf is this? Austrian telecom company admits storing all passwords in clear text saying they are too secure to be hacked....
Read here:
https://twitter.com/tmobileat/...9 -
My Skype was hacked and spam links was sent to everyone.
I guess i deserved it since i haven't updated the password since i've signed up to skype 11 years ago.
Still very annoying.8 -
I hacked this mini-project yesterday night, Computer generated photo-montage by scenes extracted from the movie.
It's an end to end python script which will work for any video and a high res poster.
29 -
Network-connected train displays, failing and displaying their IP address, on a train that has WiFi on board. That's just begging to be hacked.
19 -
After a nice clean reinstall.. some partitions didn't wanna play nice so I got my hacking tools and hacked away.
7 -
Wi-Fi WPA2 has supposedly been successfully hacked and a proof of concept is supposed to be released later today. Thoughts? Link below.
www.krackattacks.com19 -
"There are no viruses on Linux :D" proudly says Jhonny when asked why is it better than Windows, just minutes after having run a script he downloaded on the internet, feeling superior because `sudo`ing it gave him "so much freedom".17
-
All my code is hacked together and barely works and is nowhere near shameless. But I'm pretty proud of my hardware hacks. Like the sticker that holds the casing on my laptop together.
2 -
Just got a brand new car coming from a 1999 Honda CRV and holy shit the tech in these things is insane.. basically drives itself on HWY's, can start it from an app, does all sorts of weird stuff.. obviously it comes with risks of being hacked and all that but damn new cars are wicked these days.
7 -
"Can't have a fucking std (method) call, give me a break"
Said that loudly on a phone call. Wondering why people were give me dirty looks on the train1 -
One of my older servers just went down. It's been hacked. How do I know this you ask? Is it mining bitcoin?
No - windows event viewer has no errors in the logs for the last 48 hours.3 -
Decide to open torrent web site from your smartphone.
*popup: your phone is hacked, click here to scan
*popup: you are the 1000th visitor, you win a gift
*popup: see hot pictures
*popup: Hello [somebrand] phone user, click here for tips.
Shit, why I came here in the first place??5 -
"[In the future, there will be two types of people.] People who tell computers what to do, and people who are told by computers what to do." - Marc Andreessen
I guess we'll be the ones who tell the computers what to do.4 -
National Health Service (nhs) in the UK got hacked today... Workers at the hospitals could not access patient and appointment related data... How big a cheapskate you gotta be to hack a free public health service that is almost dying for fund shortages anyway...16
-
I recently got a job as a sysadmin and they've been debriefing me on their hacked websites (wordpress malware injection). Beats me why they still have their sites up at all...
BUT WAIT THERE'S MORE!
I wanted to see if they have any backups... NONE.
The latest snapshot was over a year ago...FML. Over a year ago when they barely have anything on their company site and client sites 😒
Now, I have to revive 10 websites from redirection. Time to do some shell scripting!
4 -
I always thought that this could only happen with big orgs with precious data. One of my coworkers sent me this last night
12 -
When I thought I hacked Facebook.
I somehow managed to "inspect element" and changed a couple of the words on the page. I reloaded the page and all my work was gone... I tried it again and again then googled how to hack. I then learned how to make batch scripts. the rest is history.1 -
When someone logs into someone else's Instagram after being told the password and then *posts a selfie* with the caption "#hacked"
****CRINGE****7 -
Last news: yahoo just invented that thing of the 500M hacked accounts to make us believe they have that much users.
8 -
Dear Luis,
If you are an anonymous hacker, please do not include your name in the mail.
Sincerely,
cursemeslowly a.k.a the person who has visited a porn site and supposedly being hacked by an Anonymous Hacker named Luis
21 -
Warning: long read....
I got a call this morning from a client who was panicking about not being able to login to his web panel.
So I went to the web panel and tried to login and was just redirected back to the login page. No errors or anything (at least visible on the page). Went looking for an error_log file and found it.
It turns out there was an error was showing: Disk quota exceeded.
So I went into the cPanel and checked, he used about 16GB out of 100GB and that got me confused. So I looked around and found out he was using about 510000/500000 inodes.
Went looking trough FTP to see where he has so many files and try and remove some.
Well it turns out that there were about 7 injected websites (warez, online casino, affiliate one etc) and a full hacking web panel on his FTP. After detailed analysis some who actually built the site (I just maintain some parts) made an upload form available to public with any checks on it. Meaning anyone could upload whatever they wanted and the form would allow it.
The worst part is that the client is not allowing us to secure the form with some sort of login or remove it completely (the best option) as it is not really needed but he uses it to upload some pdf catalogs or something.
TL; DR;
Old programmer created an upload form that was accessible to anyone on the web without adding any security or check as to see what kind of files was getting uploaded. Which lead to having maximum number on inodes used on server and client being unable to login.
Side note:
And ofc I had to go and fix the mess behind him again, even though he stopped working a long time ago and I started just recently and have been having nightmares of this project.2 -
Password max length: 12 characters
Additional requirements: exactly 1 special character and exactly 2 numbers.8 -
Every time I encounter "404 Not Found - nginx" when I was really young, I thought the website was hacked by Nginx(ngingks). When I got to uni and found out what it was and how to say it, I just facepalmed. Even until now, every time I read it on job posts, I still say ngingks in my head and laugh hahaha6
-
"I just hacked your website"
Me: Oh really? What did you do?
"Ran DDos attack using this third party website haha"
Me: 😃1 -
So, my raspi, that controls my home automation stopped responding to all web requests, when I got home, I noticed that the wifi dongle was not lighting up, It has worked with no problems for 3 months now, so that was really weird, I plugged in the Ethernet cable, ssh'd in and ran ifup wlan0
And BOOM consoled filled with
MESSAGE FROM SYSLOGD@RASPBERRYPI
And some odd codes, no help from Google either,
Then I checked dmesg, and there were these:
Bad relocation sym offset
Mac82011: unknown symbol
At that point I got paranoid, checked my auth.log and it was FULL of failed logins, the size was well over 1Gig, and first entry was from 2 days ago....
Then some weird shit with www-data running SU
Turns out someone got in somehow ( I'm running on nonstandard port and dynamic ip, I was supposed to disable password login today, as i had enabled it temporarily)
That made me check my wifi driver , it was modified 2 mins after they got in, had a badly made rootkit but chkrootkit didn't say anything about it.
Time to setup IDS!
Any tips for where else they might have their shit in?
Oh, also, it didn't take long to bruteforce in the zombie that got in :p
And yes, it was a compromised server that was also wiped recently, so I just emailed -rf'd IT as it had tons of victim passwords
NOBODY MESSES WITH MY MACHINE AND GETS AWAY😠9 -
Who said Linux cant be hacked?
Despite of best practises, now I am out of the sudoers list of my own machine.15 -
It is always a good thing that none of your clients websites got hacked but your own website got.
Today's gonna be a long day.2 -
Can people just fucking stop using "hacked" as a synonym for "my password has been found out"? Even devs do this shit! Devs should know better about what a "hacked" account is.14
-
I bought flowers for my date. Online.
When I registered, the website send me via email my 30 character long password.
😥
So I try "forgot password". The genius website sent me, guess what, my 30 character long password...
For fuck sakes!!!! You had one job.... Hash the fucking password!!!!
I'm afraid these people will probably get hacked soon (murphy law).
Sha256.. Guys please...12 -
last week was the funniest week in my damn life.
so apparently, some of friend knew about i can make some mobile applications, lets just call her riri. and that week, riri's Instagram account got hacked.
whats so funny about it? she ask me to get her account back or she'll accuse me as the one who hacked her account.
when i ask her, how could i bring her account back, she replied with, "why would you ask me? you were the one who good at computer thingy"
SO?
if i can drive a car, you'll assuming that i can make a car and repair it myself?
haha, funny6 -
Microsoft admits they were hacked. Explains how it worked and what happened. No big deal. companies get hacked. That's life.
Indirectly admits that all of their customer support agents have access to your inbox.
Cool. Deleting my Outlook email. Thanks guys.9 -
Hoping so much that the new devRant store has official devRant caps.
In the meanwhile I hacked this and wore it backwards during my last 4 race walks including the NY State Empire Game Championships so my opponents could watch 'little devvie' stare them down for 30+ minutes. It worked!
-
{spoilers, i guess...}
In season 1 episode 4 of Mr.Robot, Elliott plans on using a Raspberry Pi to heat up the storage facility in order to destroy the cassette tapes stored there. If he can get the temperature high enough, it would render those tapes useless. I was just wondering, can a hack like this take place in real life?11 -
Customer:
Our site is hacked, and that is because the FTP port is open to the world!
Me: Well, it is a shared hosting platform, it has to be. You should instead update your 7 year old joomla! site.2 -
Ah, I've finally finished my "h4x0r" website. I'd love to hear what my fellow devRanters think :)
edit: the information you see in the introduction paragraph (IP address and stuff) is private. No one except you can see it (not even me) :)
21 -
So my gf was sleeping and i took the opportunity to unlock her phone using her finger print. Sent bunch of texts and later told her i hacked her cellphone. She now believes i am a genuine hacker. Should i tell her the truth or just drag a little longer?15
-
- popunder background bitcoin miners did become a thing
- keybase android beta uploaded your privatekey to google servers "accidentally"
- you can spoof email headers via encoded chars, because most apps literally just render them apparently
- imgur leaked 1.7 million user accounts, protected by sha-256 "The company made sure to note that the compromised account information included only email addresses and passwords" - yeah "only", ofcourse imgur, ofcourse.
I guess the rant I did on Krahk etc. just roughly a month ago, can always be topped by something else.
sources:
https://www.mailsploit.com/index
https://bleepingcomputer.com/news/...
https://blog.malwarebytes.com/cyber...
https://helpnetsecurity.com/2017/...
6 -
It happened just now.
Yes, I put "there is no need to be upset 10 hours" on governmental terminal.
#hackerman
How? Well, I discovered that it was web ui, so random menu category -> random external governmental website with Google map on it -> you know the rest.
5 -
Once you realize your server is hacked, just disconnect the ssh and forget about it. It is known as Schrodinger defense.
The server will be both okay and fucked at the same time until someone get back into the server.1 -
The worst thing about being a dev is explaining to these fucktards that facebook can't be hacked.
But what is even worse, is when these dipshits say that i am a bad dev for not hacking facebook for them.
Use that big stupid head to sometimes think straight and stop being a little twat.3 -
Where the fuck my privacy go?
I'm paying you to listen to music or watch films, I don't want you to create a damm profile my taste or "learn" what might like.
If it was a free service, fine, I'd understand, but I am fucking pying you. I should have the option to completely disable your arse sniffing software.
I know some of them provide a "private mode", but I want that to be the default, I am paying for the god damn service :/6 -
You know a company is ripping you off when they charge £79 for a fucking charger and it breaks in 1 year. Fuck you Apple2
-
So earlier today as I was walking out of class, I overheard some people talking.
One of them said “Oh I hacked google”
Then the other one said “Oh yeah I hacked google aswell. I made it say (something I forgot)”
They were thinking that using the dev tools to make one of the tags say stuff was hacking.
😤😤😤😤😤😤😤😤😤😤😤
I had to run away
It was t o o m u c h9 -
I think my server got hacked, yesterday I made a new server on scaleway for the sake of testing I made a user called dev, with password dev. Forgot to change password before I went to bed.
Logged in today to find that load is 5x.x and this (image) in my crontab
Note to self: You are a disgrace, who the hell uses 'dev' as password for ssh on port 22 -_-
21 -
I FREAKED OUT
I WAS A DIFFERENT PERSON FOR SOME REASON
Dfox thanks for the heart attack, I thought I got hacked.
7 -
I hacked a browser game a few years ago for fun and the exploit I found and used was basically this:
<$php
$f = $_GET['f'];
$p = $_GET['p'];
$f($p);
So it was possible to pass a function and it's parameter in the URL to the server. The author used this to include() sub pages. I to highlight_file()s.2 -
Two prisoners built two computer from recycled parts, hacked into the security system and also gained access to the Internet. They got caught because they probably downloaded too much porn.
http://gizmodo.co.uk/2017/04/...4 -
That's it, the Nintendo Switch got fully exploited. Any firmware!
And only after about a year. nVidia absolutely screwed up with their security.
https://fail0verflow.com/blog/2018/...4 -
Finally!
I got my OpenCV facial recognition app working! It feels good to have finally completed this side project of mine after so long.
You can check out the code on my GitHub repo: https://github.com/abdullah-K/...4 -
So, my fathers company’s website got hacked. And the hacker left this message on the homepage. Wtf does this mean?
12 -
Being the only tech savvy person in class can be the worst. If someone gets hacked they all blame you...6
-
This kind of message doesn't let me sleep, I go to bed with the fear to be hacked for hadn't updated
2 -
PRIVATE - This is private, nothing here. seriously, there is nothing here. Do not click; I'm not kidding. Definitely no... [read more]3
-
Hey, quick question. Which one do you prefer the most? From the people I've asked so far, the odds seem to favor 9, 13, and 15 (I agree with not having my name in there because it's too redundant)...
20 -
I literally just had a conversation with my coworker who is not a dev where he said that WordPress sites getting hacked is a myth. He also thinks shared hosting sites getting hacked is also a myth......I literally can't right now.4
-
We all have that one friend who says he "hacked someone's facebook account", and all he did was peek while that person was typing his/her password....6
-
Wordpress. The only backdoor with a plugin system and CMS included.
I have to clean ANOTHER. Hacked WordPress site. One wrong decision and you have to support it for the life time :'(9 -
https://thehackernews.com/2018/11/...
Chaotic Evil: Some dude 'hacked' 50k printers that were open to the public and printed a message that the owner should subscribe to PewDiPie.11 -
Throwback - don forget when CSI showed us how to protect us from being hacked!
https://youtube.com/watch/...6 -
Little anecdote from my in-house it:
"Our passwords are safe because we change them every 3 months and they have to contain uppercases, lowercases, numbers and special characters. 6 digit length is enough and can't be hacked."9 -
I can troll all day by opening Devtools on a browser and change <input type=“password“> to <input type=“text“> they think i hacked google, facebook and their email acoount
-
Oh no, someone hacked my PayPal account, and it seems... PayPal’s too, they can’t spell properly anymore 😰
14 -
a friend of mine told me about how he hacked this website
all he did was opening the dev-tools in chrome and changing some values...2 -
One of my clients got hacked.
FML. It was fucking bad passwords by a team member.
Google has now blacklisted the domain.
Removed the shady code, requested for review. Hope it recovers soon.
Any idea how long it takes for Google to remove the red warning page before you even enter the page ?2 -
Scared the shit out of me when I heard one of my volunteer side projects website was down. Because I just finished fixing my own hacked website today.
Turn out the server and website is fine but the domain was expired yesterday 😣
Don't fucking scare at me like that.
Tough week indeed.2 -
Last time client got hacked...we just could not get rid of the malware...it replicated itself short after deletion.
Ended up creating the same files with zero content and setting them read only.
Not clean, but enough to sleep.2 -
Well, I am now in a commited relationship with devRant.
Just deleted facebook, mainly because it was draining me, MY BATTERY, my battery I mean. And also was not using that old serpant.1 -
Call at 5am, meeting in the office at 5.15am, leave office at 5.30am on route to airport because the customer doesn't know how to use the system. It turned out to be nothing :/2
-
Yesterday was the day. I got asked. Asked, if I could hack back someone's "hacked" Instagram account. For the first time.
He's probably one of those dudes who use short and easy passwords, so his password was just guessed. -
This week in positive news: "Video Editor" comes to Windows 10, so I can finally uninstall my hacked-together version of Movie Maker8
-
In my opinion
php is shit
js is shit
now what we have with babel-preset-php is converting shit to shit. it's a fucking shit storm.
https://gitlab.com/kornelski/...8 -
I have been hacked with cross-site request forgery and I don't know what to do. I have been up all night trying to fix.
15 -
A developer said to me: developers may hurry to finish the project before deadline that they might miss many security bugs specially in the updates. That a creative hacker will later take his time and exploit them.
Is it correct ?4 -
I've never been hacked - not that I know of :D - and never "hacked" someone else.
(Sure, I did some things in high school to circumvent certain restrictions but nothing worth mentioning whatsoever.)
But all these rants that I read so far have me wondering if I shouldn't simply setup a honeypot sometime when I'm about to be really bored just to have some fun. Then again, I don't have time to be bored. :/1 -
Conversion topic: a security feature the PM doesn't like
PM: but WordPress doesn't do this.
Me: yes but WP is hacked every couple weeks and isn't exactly a security standard!
Debate continues for 5 minutes... And I'm forced to remove the feature 😑 -
My last job sucked because of ridiculous deadlines, never-ending demos with hacked together fake sites, etc...but I still get nostalgic and miss it because I worked with some really cool people.1
-
It doesn't happen very often when I get to publish my side project, but this time is a charm!
Here is something I hacked together and will probably break but give it a try, you might like it😉
https://npmjs.com/package/awkward/9 -
Never felt the need for a stressball until I started using those damn automatic checkout machines ...
The f***** juice is in the f***** bagging area and I dont need no f***** help. Who the f*** coded this shit ***** ***** *****3 -
So today I decided to try out Kotlin on Android. Hacked up a little Textview-Button app. AMAZED with the little code.
14 -
StackExchange’s Apple Ask Different Question Summary
30% Dual boot Linux destroyed disk partitions - not bootable
40% Destroyed disk with diskutil - not bootable
20% AM I HACKED!?
10% Featured and never answered. -
So I get home from work, sit down infront of my computer and start browsing a few sites.
The loading times was not as fast as they should so I checked out my network setup. I had been auto connected to my ISP provided modems WiFi, which happens every now and then, so I reconnect to my faster and better WiFi AP.
Invalid password. What? Ok.. Let me just type in the same password, slowly..
Invalid password. MF..... Same password, looking down at my keyboard.
Invalid password. GDMF...
Browse to my AP config site, type in username and password.
Invalid password. Oh no you fucking did not just deny me entry as well.
Ok. Something is up and I'm going to get to the bottom of this!
Boot up Kali, fires loads of crap at the WiFi and the site. Still no damn luck! WTH!
I go upstairs to my AP, turn it off and on again.
I can now login on both my AP WiFi and config page.
It had frozen.
Thats two hours of troubleshooting for a "have you tried turning it off and on again" solution.
I feel great about my competence after this.2 -
I was wondering how a sysadmin would know if the user sending malicious traffic is the real attacker or his account has been hacked ?
(Also probable that the attacker has faked his mac address to user's device)9 -
Dutch news for kids, about a 15 year old boy who hacked an online store..
What did they use... Hackertyper.. I see what you did there.
4 -
I was gonna complain about why it is not clear how the tags should be used...
Then saw the placeholder "Tags (comma separated)" -
fuck people who need to be hacked to care about security.
i hope everyone who used that early ap scores gets their credit cards stolen because they don't know how to use a vpn.8 -
"I know this guy who works in the service centre where they fix ATMs. He reckons if you could create a hacked copy of the OS, he could install it on a machine, then we can go and withdraw unlimited money from it!"
-
Damn you hackers!
This is why it pays to hide your login page with WordPress, luckily not been hacked yet.
They are persistent if nothing else them Bots. 😱
1 -
Today I went to a computer store,
I ran dir /s C:\ ( "ls -r /" equivalent for Linux, sorry GNU/Linux)
left it there
Hoping someone will panic thinking that computer has been hacked5 -
Somebody is onto me.
This week, I received a suspicious email claiming to reset my apple account password.
And just now, I received another mail from Facebook about unsuccessful login attempt.
I use this email only for serious stuff. Looks like one of them is a mole.2 -
telling your girlfriend's younger brother you've hacked his Minecraft account is evil but his reaction is priceless
-
fuck wordpress... Got a request to improve wordpress site speed + pagespeed score. 20-30 plugins, 15 or more additional ones off. Improved the score and noticed that my adblocker is blocking a lot of urls. Sure enough theres a hidden iframe in the bottom with 10 ad network scripts and bidding get requests. Someone is making ad revenue from this shit.. wtf. I've only had problems with shitty wordpress sites being hacked for some reason. It's always a shitty experience. Any tips on fixing hacked wordpress sites?5
-
Either my server is hacked or I fucked something up two days ago without knowing, I suddenly start receiving a dms file when I try access my domain or either by IP, file name is: valroSG0.dms
Do I need to be worried :S10 -
Have to use Mac for mobile development
Have 16 GB of ram on a MacBook Pro machine from 2013.
It’s been working perfectly fine on the stack I’ve been using (Firefox, vscode, react-native, node, docker, Xcode, Android studio, simulator, chrome canary)
Apple releases new hardware with 32 GB ram and a few months later I see my is slowing down due to low ram, forcing me to close apps
I smell something fishy going on2 -
Had to submit a form and couldn't because of some js errors. I hacked my way through with the console to submit none the less
-
Fuck you Chrome Canary. You tell me to update and then keep crashing.
Well admittedly it is Canary :o1 -
Roses are red
Boost I need you
You do so much I cannot breath
You fucking need to be hacked around every time I have to compile you for a different compiler or VS version getyourshittogheter fucking hell it makes me hate you -
I fucking hate when people think they can do a better job not using a well tested library.
And then try justify why their code is better and quicker than using a library.1 -
Most of the companies visiting my campus for placements are hiring people with high CGPA and less knowledge and leaving (not even allowing for taking tests) the ones with good technical knowledge with less CGPA 🙁. So I hacked the placement portal developed by a PLACED, HIGH CGPA Candidate using SQL Injection and got access to all the student accounts 😄2
-
played a typing game with my friends, hacked it with a small python code that types everything for me and told everyone I'm the champ.
right now i'm in the first place in the world :-)3 -
So, I apply for a job and they send me an automated email with my username....and my pasword....in plain text...I should use a different password for my applications....4
-
When the code is so bad that fixing one thing breaks 10 other things because the code was made to work with broken code.3
-
A few days ago our server was compromised due to an outdated Jenkins version. The malicious user installed a crypto miner on the server... The same day that it was found I told management that I'm interested in helping out with the server. Since then, nothing happened... No updates, no security measures, no nothing (except for the removed crypto miner and updated Jenkins software)
Oh well only a matter of time before another hack...
Question to some (who work way way way longer than me) med - seniors, should I make a big deal out of this? And keep pressure on it. Or should I just leave it be and wait for the next comprised server? I know devrant is not a Q&A service, but some dev to dev advice is much appreciated.
- incognito1 -
Working at a local seo sweat-shop as "whatever the lead dev does't feel like doing" guy.
Inherit their linux "server".
- Over 500 security updates
- Everything in /var/www is chmod to 777
- Everything in /var/www is owned by a random user that isn't apache
- Every single database is owned by root sql user
- Password for sudo user and mysql root user same as wifi password given to everyone at company.
- Custom spaghetti code dashboard with over 400 files in one directory, db/ api logins spread throughout these files, passwords in plain text.
- Dashboard doesn't have passwords, just usernames to login
- Dashboard database has all customer information including credit card stored in plain text
- Company wifi is shared by other businesses in the area
I suggest that I should try to fix some of these things.
Lead Developer / Tech Director : We're an SEO company, not a security company . . .7 -
I spent most of a day a few weeks ago tracking down and fixing a NaN bug in a framework I use. I hacked it into my local copy of the framework's code.
Today I have the same bug, and after several hours of searching I finally realize I'd updated to a new version of said framework and so had overwritten my fix....
FML3 -
our website got hacked somebody downloaded the whole source code and sent an email to us.
seems like that person would demand ransom or anything.
We still can't find where is the door ( vulnerability ) through which he pulled all files.17 -
Legit questions!
How does facebook secures itself, we never heard news like facebook hacked, user data stolen, recently with ddos, twitter and other websites were affected but not Facebook?
Are they superhumans?9 -
I really wish I had worked somewhere that was hacked, so as to know how it was done, how it was found out, and what measures were taken, from the inside.
The problem is that I worked at a lot, and big places. We were never successfully attacked or hacked as far as I know. Was our security so good, that nobody succeeded? Or was it so bad, that we didn't even notice? -
I hacked my friend's laptop when i was 12. Entered the password as BATMAN because his lockscreen wallpaper was BATMAN😅😂😂3
-
Fuck you BBC, I just want toblosten to fucking radio and you tell me that I "need" to sign in.
I do not want you to tell me what to losten to. I do not want "relevant" content, just want to listen to 30 mins of news.
Then you say it is easy to signup, but then ask for my exact date of birth as the first question wtf ...
6 -
Year ago in university.
We opened our university's website and select inspect element in browser then edit the header tag to "hacked by..."
My friends and i : hey look, we just hacked university website.
Our friend : oh let me see, damn you, how did u do that?
Our : it was easy, just don't tell anybody. He answered ok.
After couple days our proffesor asked me : do you know who hacked university website? I want to know if anyone could hack it.
I answered: no sir. I don't know.
I think our friend still thinks we hacked the website xD -
My eyes are burning. Too much color on the notifications page, evil avatars.
There should have been a warning "Do not open in dark!"5 -
When you're playing the piano at a church meeting and patching WordPress on a client's hacked website through your iPhone as you play.
-
George Hotz, the guy who hacked iPhone and Playstation 3 back in the days has made a 11 hours straight coding session some months ago.
Holy Cow.
Link: https://youtube.com/watch/...7 -
He got me. I'm so done for...
Pretty funny, cause maybe half a year ago there was an attack against my email, but I'm pretty sure he got stopped because of the 2FA. Not to mention that I immediately changed it for a password x times stronger than whay I had before 🤷♂️
13 -
I just got an email from matrix that their servers are hacked. Apparently this happened last thursday and they took until Sunday to notify me... I had expected differently from them....4
-
Hmm... Okay crazy deadlines. We hacked together a really makeshift application to handle streaming content to end users. The proof of concept was demonstrated to a partner company on a Wednesday. They said they wanted it on Saturday. Our CTO agreed. We didn't sleep.2
-
M$ even admitted that ActiveX was not safe. They at least accepted the problem.
But just saying the the user: "Cool features = get hacked" is stupid.
6 -
Why the fuck does Samsung Hub which I don't want on my device, keeps installing Peel Smart Remote TV Guide, what ever that shit is on my device.
Have deleted it 3 times since yesterday and it keeps installing it.3 -
lol hacked a database today.
My first time at this!
If I really wanted to, this user has access to everything and I could use this DB instead of taking up space on my own servers lol
3 -
I understand the muggles on Facebook saying it was Apple and Amazon that were hacked, but here on devrant where people know WTF is up, I'm still not seeing people say where the hack actually took place, and what makes the news truly terrifying: SMC.4
-
I hacked port authority administration computers using enable Bluetooth flip phone ,then I changed background pic in all computers on network, and put an mp3 song on startup folder, turn volume to the max, gues the rest, they were using window xp ,and told their manager she gave me a job on spot , and was very interested, and that where my journey begun
-
Trying to sleep. Looking at devRant. See a f ew rants about bugs which reminds me of my bug. Get out of bed and now behind my computer trying to fix the bug. Hope it's a quick one so I can go back to sleep
-
WhatsApp just got hacked by the Russians - or it may have well have been considering the uproar - it's a messaging app - who really cares3
-
When your cybersecurity departement gets back your hacked servers but then the whole network is DDoSed!4
-
Gentle note to aspiring devs, that SO is not hacked. It just their new 90's theme design (More to come).
Search for history icon beside search bar to toggle to normal(Modern) view. Stop Panicking!
2 -
A couple of weeks ago my work email got hacked, I found out because he/she was sending phishing mails to yahoo emailaddresses, but they couldn't be delivered because they were marked as phishing.
I've immediately changed my password and turned on two-factor authentication, shared my story with my boss and now we use two-factor authentication for every service where it is possible.2 -
Got bit by a hacked repo. It was compromised for all of like 30-some seconds. No intrusions, but now I can't set my root password (passwd goes "oh, yeah, we got this" then it does... nothing...) and Weyland/X/Gnome/Cinnamon/KDE/whatever the kids use nowadays are all busted (they all start, but they just hang tty1 and whatever other console invoked it). Tried reinstalling all those kinds of things, didn't help.
fml2 -
I believe my friend's Instagram account got hijacked. When I clicked on the provoking message - I get a prompt asking for my password. Has anyone seen this bullshit before?
13 -
Just had an argument (with myself ;)) whether to write a completely server rendered site or a js app.
The only stas I have manged to find is from 2010 saying potentially 2% of users could have js disabled.
Why cannkt I find newer stats :/4 -
My group set up a Linux Dev server. We got hacked by Chinese hackers. We set it up again but even more secure with only people inside the uni can access it. We got hacked again.Turns out one of the modules in a container was using an outdated CentOS version. P.S The malicious file on the server was called kk.love.1
-
For fuck sake, stop complaining about the number of js libs. There is just as many if not more c/c++/c#/java/python/ruby/php... libs.
Just because they are available on npm or github, it doesn't mean you have to fucking see/read/use it1 -
I just created a URL-Shortener in NodeJs and MongoDB. Would be great if you could check it out! :)
Also if you wanna use it for your Projects or the like, you can also use my api!
Link to Url-Shortener: http://kapparr.ga/
API Usage: http://kapparr.ga/api/<url>
Feel free to tell me about your opinion or bugreports in the comments :)5 -
Once at a foreign airport I decided to kill the time on Facebook... There were only 20 minutes of WiFi for free. After 20 minutes I opened terminal and hacked over the restriction...4
-
Small warning: The plugin “Web Developer“ was hacked and shows shady ads and does maybe even more in the background. Better disable it for now.2
-
So tired of explaining other stupid developers that POST is not more secure than GET in a ReST api. I have heard many times if you use GET you will be hacked :|
-
Have you seen those comments which are better than the rants themselves ...
I see myself being forced to ++ the rant, just so people could see the comment :/1 -
In my dream my devRant account was hacked 😐 and i thought it was something usual recently on devRant. I was typing my (email?) and like i was hacked on my computer too the input was something like this ے2
-
People who freak out and think they have been hacked when you send a message to them on the prod server using the wall command should not be allowed SSH access.
-
I spend the first 30 min of my day, every day, cleaning up the shit storm that my "PM" hacked together in JIRA. I really wish she would be taken off this project.1
-
Had to change my password on my bitbucket cause a former employer was adding ssh keys.
Sorry pal, email notifications are rats1 -
You know when you are interested in a topic or have a question, and you find it on stackoberflow or hacker news, but it is from 754 days ago ...
You are left wondering, should I leave a comment here or create a new thread ...1 -
Is devRant using Google Analytics for upvotes (on web)? My privacy protection apps have removed the ++ button because of that on web :(1
-
I once hacked my brain and track all my calls. I new when and who was about to call, simple mind. Control and it took me 3 month to learn , I believe anything is possible, there lots I learned about enhancing your mind , its real fun6
-
I thought the weather app I was using was hacked because because it displayed Ukranian Village as my current/default location.
Somehow this zip code though is known by that...
3 -
Anyone playing the 'hacked' game on android ? despite the name, It's just about logic and I have been kind of addicted to it for the past week ( the plot seems purposely built off every bullshit hollywood producers thrown at us for decades regarding hacking) just wanted to thanks the dev for it, maybe they ' ll pass by devRant and see this ;)2
-
It's time to reset all my passwords. Got the second Facebook password reset email this month and now even from Microsoft they doesn't even have the same email-pass pair...
And fucking Facebook doesn't tell anything about the reset attempt. Not even a fucking ip address.1 -
Rewriting scripts to blacklist IPs of hacked accounts from SMTP logs. Very fun learning experience. Not really any other cool projects for me lol
-
Dont want anything, maybe an alternative main stream social network which I actually own my data and I can define who accesses it and who doesnt. Its my info not the company that it is being held on.
Smart p2p and encrypted which somehow only those I allow can view it.3 -
Jeesh! In the last 12 months I've had a lot of emails from the different services I've used that they've been compromised and a database of emails and hashed passwords have been exposed 😒1
-
Why the carrot did people keep asking me about their hacked account? I'm only a programmer, not a social media expert.4
-
I think Google's spam filter got hacked... Got 2 spam emails with those fancy printed subject texts... In the past 1hr2
-
muahaha I hacked one of our Auditors. He wants to learn how to code now and automate parts of his work. Don't teach them how to build a ship, teach them the joy of the sea. :-)2
-
Fully upgraded wordpress for my blog (just not interested writing my own ) with security patches and got hacked... all index files in first level directories replaced. Will find the time to make my own and migrate all posts because "wordpress is awesome"6
-
Today one of the user complained me that my account has been hacked and someone is using it. I asked how can you say that then he replied "Whenever I hit enter after typing the password, its getting extended !"
I was like - "Please kill me!"2 -
I thought devRant week count would have overflowed and gone back to 1.
Qhat sort of year has more than 52 weeks, feels like the estimates PMs give ... -
Tests, unit tests, integration tests, ui tests, tdd, bdd
I thought I was done with tests after school. Why, why you do this to me 😢😢😢4 -
An image is worth a thousand words
( I don't actually watch it on my phone, just needed the app cause my acc got hacked )
-
Goddammit Microsoft!! Hardly a month in and you just had to prove yourselves. You had one job!!
News source: https://nakedsecurity.sophos.com/20...
5 -
When did it become so hard to come up with usernames that dont contain your name or year of birth ...4
-
They need to add a new definition of Eclipse to all dictionaries.
Taking away the light and joy of development out of the process.
Synonyms: impossible, waste of time, wishing for Friday.1 -
The consistency of php standard lib function is astonishing. array_map, array_reduce ...
Why do I have to use php7 😢😢😭😭😭1 -
Reinstalled my laptop from a hacked-together Ubuntu server install with i3wm and some other junk to a plain Ubuntu 18.04 install.
Man, I love this Gnome shell so much...
It's really nice when you have a small screen... -
AI taking my job
Become the next president with the moto of build a wall, build a wall, build a wall
Make dev great again ... -
Has anyone here tried nim lang?
I have been intrigued by it, but not sure if it will stay around for the long run. I believe they have been trying to reach v 1.0 for a while, but it is taking longer than expected.
Would be interested your opinions :) -
Sigh, when you realise your bank is using depracated dojo.js (uncompressed with console warnings) and it wont proceed unless you turn ublock origin off ...
-
You know how people rant about js frameworks; well the very same is true about nosql.
I thought let me broaden my horizon (pun intended) with a nosql db in my project.
So from Friday evening, I started off with ElasticSearch, which is pretty simple to get started, but apparently I need to understand it a lot better to use it as a primary data-store.
Then I stumble upon orient-db, was pretty exciting and learnt the apis/librarys but researching it a bit more to learn about the community; there is some bad-blood there.
Now I'm onto something called ArangoDB, think I'll stick with this; Any more time spent on this and I'll just give up on the project.5 -
I wonder if we will have a sprint review meeting for 2016. You know to prevent the shit storm that happened to continue ...
Top Tags
Weekly Rant
View