MacMegasite was hacked this morning. Luckily I do daily backups of the database, so I reverted to the backup done at Midnight, shortly before it was hacked.

I was able to figure out how it was done easily by looking at the raw logs, and I patched that particular hole and several similar ones. I also took a good look at Nuke’s code and I could see why it’s so susceptible to SQL injection hacks. I also put in a simple fix that will prevent similar hacks.

Comments are closed.