Yep, the first time I’ve ever faced hacking of any kind. Reminds me of the time I accessed Yue-En’s IVLE account back in AJC when their stupid system made the default password your NRIC number. Pretty stupid higher-ups in AJC. But I digress. This morning, while doing my daily check on my website (it brings a smile to my face knowing just how good I am) everything seemed perfectly fine. Until I actually noticed something different to the title of my site. It read: “Hack3d… Hack3d” haha.
Point to note: I’m a designer first, social blogger second. Thus things as simple as taking screenshots of interesting events aren’t intuitive to me. Thus no evidence. Heh.
Anyway, I panicked, and that spelt the end of me paying attention to AMA class. The first thing I did was try to log in Wordpress, and well I couldn’t and so I panicked more. Haha. Next, I tried to log in to my cPanel (geek alert) and well I could. Cue a huge sigh of relief. It meant the hack was contained to my Wordpress. I went to search about how I could reset my Wordpress password and well I’m glad I could do it via phpAdmin. It was then when I finally found out the culprit — this Indonesian fella with the pseudonym vrodo. Turns out there was a vulnerability with my shoutbox, and this vrodo piece of shit used a script to hack into my account. I’m not sure why my entire site wasn’t defaced though (as with the many other affected sites) but I’m just glad he didn’t. Entirely relieved actually. I fixed the vulnerability as soon as I could, and well I declare my site safe.
A pretty eventful day then haha. Pretty thankful I’m not a tech idiot! (points at Chun Yong)
Edit: Indeed, I have been naive. My blog entries for February have all been erased. Well done. Fuck you, vrodo.