FileDen filesharing service Update

DerVVulfman — Fri, 02 Dec 2011 03:10:49 +0000

I was like... UGH... when FileDen shut down for maintenance, but they were being plagued by idiots going in and attempting to insert malware. I figure they're tightening up security, but the lockdown meant that no files could be accessed or uploaded.

The below text is from FileDen indicating that while the maintenance will take almost another week, they'll let filesharing resume in about a day's time.

I think they're keeping the idiot malware guys a secret.

QUOTE

We appreciate your continued patience. As many are aware - we have been making large strides over the past months to increase the speed and efficiency of the Fileden system while simultaneously working to migrate it over to the new platform. However, this process provided to be more challenging and thus taking more time than we initially anticipated.

Beginning Thursday December 1, 2011 we will begin a phased approached to incrementally providing access to account data. Though the entire process will take approximately 4-7 days to complete all phases, a vast majority will have access in the next 24-48 hours.

We apologize for the inconvenience and look forward to having FileDen.com back up to 100% as soon as possible.

Sincerely,

The Entire FileDen Team

Our host is doing an upgrade

DerVVulfman — Tue, 07 Jun 2011 04:18:00 +0000

From JCink, our host:

QUOTE (JCink)

Another new server! We have purchased a brand new, more powerful main router for our firewall server. It has been in testing for the last week or so and it has passed. As a result, we plan to install it Wesnesday, June 8th at around 3AM EDT. The switchover will have very minimal downtime, around 5 minutes or so while we re-configure a few things live on the network once it goes up.

Users should notice absolutely no difference once this operation is complete. This is just typical network infrastructure maintenance. smile.gif

Thank you for your continued support!

As always, follow us on http://twitter.com/jcink

FileDen Malware Problem

DerVVulfman — Thu, 31 Mar 2011 02:33:10 +0000

Some of you may be using file-sharing sites like Box.Net, photobucket, imageshack and the like. This is a thread about one that I use more often. It is entitled FileDen.

Since around February 2011, Fileden's log-in portal had become plagued with a vicious MalWare infection similar in nature to the dreaded XP Defender program. This malware masquerades as an antivirus program that informs the victim that around 38 spambots, worms and the like have infected their system and you are required to pay them for the use of their program. Unfortunately, this is not an easy malware program to remove (likely requiring a full and destructive reformat of your PC). And paying the creators of the Malware for the registration solves nothing as the malware program will remain on the PC. It's nothing short of extortion.

It is possible for some anti-virus systems to detect malware systems from intruding, and I found that the newest version of Avast! not only detected it, but can bring up a virtual room firewall which can give me the options to (use it normally, use it in a virtual environment, or stop it from running ). Needless to say, I say 'NO!'

Fileden has since worked to remove the Malware program from their portal. However, Avast's protection is so powerful that it flags their portal as a dangerously constructed system that uses I-Frames. Rather than using eMails and files, more and more viruses are transmitted by directly logging into respected sites and using an I-Frame log-in portal just asks to get infected. Avast flat-out STOPPED the site from loading. or letting anyone new from registering that way.

For those that wish to re-enter FileDen, there are ways that bypass the main portal, and that is by directly going into your file browser or the old upload page. Through these pages, my copy of Avast! have not detected any threat.

http://www.fileden.com/myfiles.php
http://www.fileden.com/upload_old.php

However, I still recommend using a very strong anti-virus system before logging in.

FileDen's forum is currently down as an upgrade is in the works, so feedback is not available. It appears they are working to resolve the Malware issue, as I've stated. But I do not know how far along they are in this matter.

Be careful.

We had a temporary 2-month loss

DerVVulfman — Sat, 12 Feb 2011 04:04:48 +0000

Yesterday, there was a 2 month loss serverwide with the JCink forum service...

QUOTE (JCink)

It is with great regret today that I inform everyone that the system had a hardware failure.

During our routine maintenance on February 10th, something went horribly wrong, and it turned out to be a faulty drive. It was not expected. We quickly backed up all of the content as it was, and then shut down the server to begin the process of swapping out the bad drives.

This entire process took endless hours; and the structure of our files of our databases has been completely rebuilt. They have been placed on a dedicated drive so this problem can be avoided in the future.

Fortunately, they were extremely dilligent and worked tirelessly to bring back the months of data.

QUOTE (JCink)

I'd also like to extend a thanks to everyone on the twitter who stayed patient through the whole process and for their words of encouragement. When this issue first happened, I thought that there were going to be a lot of angry people. But even when things weren't going so well, I didn't see anyone freak out or start flaming us. Thank you for your patience and for trusting us to restore everything.

All boards should be as they were on February 10th, 2010 at 2:00AM before the crash. If your board isn't working, please let us know. I will take a look at it.

Hack-Attack at Save-Point

DerVVulfman — Sun, 23 Jan 2011 21:04:11 +0000

Saturday, January 22nd, 2011, Save-Point.Org lost approximately two weeks of posts due to a recent hacking attempt. The hacker was stopped before any further damage could occur.

Since then, much tighter security was initiated, including features that were being sought just before the attack. These new measures will ensure no further hacking will occur.

Save-Point. The new site

DerVVulfman — Tue, 14 Dec 2010 06:32:58 +0000

A little late in posting, but not too late as we still have a few things to accomplish... Save-Point.Org is up and operational.

Due to inner conflicts between the owner and management/administration of RMVXP.com and the webspace provider who also owns the actual domain name, the entire forum was backed and moved to a new site. As such, the owner of (the former RMVXP) has since dubbed the new site 'Save-Point.Org'.

All membership accounts and all the threads and posts were transferred. The only losses were the PMs and some of the passwords as neither were easily transferrable. Most passwords transferred. Some did not. But while it took some time to straighten out, the 'Lost Password' feature can notify members of a newly generated password if they so choose to use it.

RMVXP is back

DerVVulfman — Mon, 04 Oct 2010 04:28:28 +0000

For those who frequent RPGMaker sites, you may have noticed that one of our affiliates has been down for a while. In a nutshell, the site was expertly hacked and erased. They not only erased the threads, but the whole database forum files and FTP itself.

But now, utilizing backup data, the forum is back and running.

True, many features have to be re-introduced to work as it did before the attack, but it is coming along nicely and at a quick pace.

Remodeling!

DerVVulfman — Sun, 26 Sep 2010 13:59:15 +0000

Changes are happening 'navigation-wise' within the forum that I trust will be for the better.

The previous layout of the forum boards was a bit cumbersome as there were up to seven different boards to navigate. As of now, this number has been greatly reduced by moving the TOOLS board into the SOFTWARE board as its own smaller forum. The 'Writing Tools', 'Graphic Design Tools', and etc. are now subforums within the renamed 'Tools of the Trade' forum. Likewise, the ARTS and LITERATURE boards have now been merged together to form the 'Museum' forum within THE PLAZA. And yes, Storytelling and Personal Stylings are now subforums within. However, the articles and resource forums have now been moved into its own USEFUL RESOURCES board.

More changes are soon to come.

We're Back. There was a Server Attack

DerVVulfman — Thu, 12 Aug 2010 17:19:23 +0000

Greetings and salutations. As you can tell, we're back up from yesterday's downtime. It wasn't us. It wasn't anyone maliciously attacking House Slashers. It was a DDoS attack on the JCink.Com network itself.

It wasn't an attack to go after any single site, but was apparently designed to knock out the whole JCink.Com network. This affected every hosted site and the services like Air Proxy which he provides. You can follow it right (>HERE<).

QUOTE (JCink.Com)

DDoS Attack
Aug 12 2010, 03:34 AM

At around 9PM we suffered a very serious DDoS attack against our network that is still ongoing. The site is being put online because we've been able to diffuse some of the flames. We know who is responsible and are working on bringing some justice on that front as well as trying to improve things on our end.

I apologize deeply for the downtime. These people do not have regard for how many users they're causing pain for and I will be doing something about it.

Please follow us on twitter ( http://twitter.com/jcink ) for further updates.

The graph shows the attack but at the time of this posting it is dropping off.

If you continue reading from JCink's own forum, he has identified the IP address of the perpetrators and have contacted every related Internet Service Providers for action and support.

FIREFOX Addon Security Vulnerabilities

DerVVulfman — Wed, 14 Jul 2010 14:38:28 +0000

The below was discovered by kyonides of HBGames.Org and RMVXP.Com

QUOTE (kyonides )

If you want to learn more about this, check out this announcement from Mozilla regarding 2 dangerous add-ons that could make you start crying over spilt milk if it's too late for you to save your data or your PC.

Add-on security vulnerability announcement

One malicious add-on and another add-on with a serious security vulnerability were discovered recently on the Mozilla Add-ons site. Both issues have been dealt with, and the details are described below.

Mozilla Sniffer

Issue

An add-on called �€�Mozilla Sniffer�€� was uploaded on June 6th to addons.mozilla.org. It was discovered that this add-on contains code that intercepts login data submitted to any website, and sends this data to a remote location. Upon discovery on July 12th, the add-on was disabled and added to the blocklist, which will prompt the add-on to be uninstalled for all current users.

Impact to users

If a user installs this add-on and submits a login form with a password field, all form data will be submitted to a remote location. Uninstalling the add-on stops this behavior. Anybody who has installed this add-on should change their passwords as soon as possible.

Status

Mozilla Sniffer has been downloaded approximately 1,800 times since its submission and currently reports 334 active daily users. All current users should receive an uninstall notification within a day or so. The site this add-on sends data to seems to be down at the moment, so it is unknown if data is still being collected.

Mozilla Sniffer was not developed by Mozilla, and it was not reviewed by Mozilla. The add-on was in an experimental state, and all users that installed it should have seen a warning indicating it is unreviewed. Unreviewed add-ons are scanned for known viruses, trojans, and other malware, but some types of malicious behavior can only be detected in a code review.

Credit

This issue was originally reported by Johann-Peter Hartmann.

Note

Having unreviewed add-ons exposed to the public, even with low visibility, has been previously identified as an attack vector for hackers. For this reason, we�€�re already working on implementing a new security model for addons.mozilla.org that will require all add-ons to be code-reviewed before they are discoverable in the site. Here�€�s more information about it.

CoolPreviews

Issue

A security escalation vulnerability was discovered in version 3.0.1 of the CoolPreviews add-on. The vulnerability can be triggered using a specially crafted hyperlink. If the user hovers the cursor over this link, the preview function executes remote JavaScript code with local chrome privileges, giving the attacking script control over the host computer. Version 3.0.1 and all older versions have been disabled on addons.mozilla.org, and a fixed version was uploaded and reviewed within a day of the developer being notified.

Impact to users

Proof of concept code for this vulnerability was posted on this blog, but no known malicious exploits have been reported so far. If a user has a vulnerable version installed and clicks on a malicious link that targets the add-on, the code in the malicious link will run with local privileges, potentially gaining access to the file system and allowing code download and execution.

All users of CoolPreviews should update to the latest version as soon as possible in order to avoid exposure.

Status

Currently, 177,000 users have a vulnerable version installed. This is less than 25% of the current install base and it will continue to decrease as more users are prompted to update to a new version. Vulnerable versions will also be blocklisted very soon.

Credit

This issue was originally reported by Alice White.

Downtime

DerVVulfman — Sun, 09 May 2010 21:02:19 +0000

From JCink.Com

QUOTE

May 8 2010, 04:23 PM

Apologies for the downtime today. For approximately 40 minutes the server was down. Our brand new UPS had a failure and caused two of our machines to hard-shut down and restart. Because of the hard reset, the information on the disks had to be re-checked to make sure the data wasn't damaged, and this took some time.

Systems are back online, but next week we will be doing testing to figure out what went wrong so this doesn't happen ever again. The system reloading data into memory at the moment, so you may experience long load times for a few minutes.

We apologize sincerely for this inconvenience...

IE USERS! Trojans in Google AdSense Ads

DerVVulfman — Mon, 03 May 2010 18:00:44 +0000

Dear members of the community,

While checking out our host's main site, I stumbled across an announcement that some anti-virus applications are detecting a Trojan Dropper within the Google Advertisements you see within this forum. Google is aware of this problem and is finally working to rectify this situation. For users of netscape-based browsers such as Firefox or Seamonkey, this is no problem. Apparently, the members affected are ones who use Internet Explorer.

It is not that the jCink forum system is infected. It is the advertisement system that Google uses (Google Adsense) that many sites have that garners them additional income that is the problem. And google is working to fix this situation.

Google's Support

Two Chatrooms

DerVVulfman — Sun, 18 Apr 2010 20:50:42 +0000

We are employing two different chatroom services right now. One is the system generated by Add-On Interactive and is our Add-On chatroom. The second is by our ParaChat chatroom which has only recently been re-added. Both chatrooms are Java-based chatrooms so you will need Java to get it running. However, they are separate chatrooms so a conversation within one chatroom cannot be shared between the two services.

Our host's downtime and a new upgrade

DerVVulfman — Thu, 21 Jan 2010 03:11:06 +0000

If you were here on or around January 16th, you may have had problems getting into the forum. Yes, there was a network outage due to a failed network box. The box has been repaired and Jcink and co. willl be monitoring it closely to check for issues.

In the meantime, good things are coming.

QUOTE (Jcink himself)

We have put in an order for some bandwidth upgrades which will occur within the next 24-48 hours. This will increase speed of our network line and give us additional capacity to grow and create new services. Faster page loads may occur for you as a result.

The upgrade process for this should be completely transparent to everyone and there shouldn't be a need to do anything but wait. No downtime should occur, but we are posting this message just in case we're required to do some quick work with the networking equipment.

And so it begins...

DerVVulfman — Sat, 02 Jan 2010 16:12:50 +0000

We at HOUSE SLASHER would like to wish everyone a
HAPPY NEW
YEAR