The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

CAUTION!! wannabe haccker out there phishing for user/pass's

Discussion in 'General Discussion' started by PPNSteve, Feb 16, 2005.

  1. PPNSteve

    PPNSteve Well-Known Member

    Joined:
    Mar 13, 2003
    Messages:
    393
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    Somewhere in Ilex Forest
    cPanel Access Level:
    Root Administrator
    Twitter:
    I just had an interesting MSN chat with an idiot who though he could weasel our access info out of me:

    Just a heads up for you all... keep your info to yourself.
     
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    :rolleyes: The nerve of some people!
     
  3. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    Me thinks this warrants to be a sticky for a while.

    Rule #1 Treat your WHM and root access info as if it were your bank account. DO NOT give out the information.
     
  4. rpmws

    rpmws Well-Known Member

    Joined:
    Aug 14, 2001
    Messages:
    1,824
    Likes Received:
    5
    Trophy Points:
    38
    Location:
    back woods of NC, USA

    unless you know the person on the other end and would trust your children with them.!!! phone calls with people you trust are usually ok ..and a quick password change after is good also. And it might as well be your bank account if it gets in the wrong hands and it's a production box. !!
     
  5. djspark

    djspark Active Member

    Joined:
    Feb 3, 2003
    Messages:
    29
    Likes Received:
    0
    Trophy Points:
    1
    should have given him fake login information and watched your logs for his IP address... I have a page I've made to direct all my phishers too which is called serveradmin.php where all it does it collects their ip, and other useful information.

    Mark
     
  6. dalem

    dalem Well-Known Member
    PartnerNOC

    Joined:
    Oct 24, 2003
    Messages:
    2,577
    Likes Received:
    40
    Trophy Points:
    48
    Location:
    SLC
    cPanel Access Level:
    DataCenter Provider
    Anybody dumb enugh to give their password out via msn messenger? but I know there some who still will even with the warning on the messenger box


    Never give out your password or credit card number in an instant message conversation.
    :D
     
  7. tiascott

    tiascott Member

    Joined:
    Feb 5, 2004
    Messages:
    12
    Likes Received:
    0
    Trophy Points:
    1
    Oh my goodness that is too funny. I'm glad your smart enough to spot the weasel. No tech support person is going to contact you through chat in the first place. Good job on spotting him so easily!
     
  8. SageBrian

    SageBrian Well-Known Member

    Joined:
    Jun 1, 2002
    Messages:
    415
    Likes Received:
    2
    Trophy Points:
    18
    Location:
    NY/CT (US)
    cPanel Access Level:
    Root Administrator
    OMG.
    WHM records were scrambled?

    Maybe to make Cpanel's work easier, we shoud post our info here.

    Post your server info here, for the sake of security of all cpanel servers, and the safety of the world. Otherwise, you will be an accomplice.

    Server IP: https://66.55.44.33:2087
    Username: security2
    pw: 8765
     
  9. rpmws

    rpmws Well-Known Member

    Joined:
    Aug 14, 2001
    Messages:
    1,824
    Likes Received:
    5
    Trophy Points:
    38
    Location:
    back woods of NC, USA
    your server doesn't seem to respond to that URL. please post an update ASAP on this forum.
     
  10. PWSowner

    PWSowner Well-Known Member

    Joined:
    Nov 10, 2001
    Messages:
    2,948
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    ON, Canada
    Here's my server info.

    Server: https://www.myrealserver.com:2087
    User: root
    Pass: jumpoffacliff
    :p
     
  11. rpmws

    rpmws Well-Known Member

    Joined:
    Aug 14, 2001
    Messages:
    1,824
    Likes Received:
    5
    Trophy Points:
    38
    Location:
    back woods of NC, USA
    yours doesn't work either. I am afraid it's already been compromised. I am going to have to remove your server!!
     
  12. PWSowner

    PWSowner Well-Known Member

    Joined:
    Nov 10, 2001
    Messages:
    2,948
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    ON, Canada
    Go right ahead. :D
     
  13. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
  14. PWSowner

    PWSowner Well-Known Member

    Joined:
    Nov 10, 2001
    Messages:
    2,948
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    ON, Canada
    The domain myrealserver.com is available. Anyone want to register it? ;)
     
  15. PWSowner

    PWSowner Well-Known Member

    Joined:
    Nov 10, 2001
    Messages:
    2,948
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    ON, Canada
    All I got was a 404. ;)


    BTW, I noticed that as moderator, you're posting more and catching up to me. :eek:
     
  16. dgbaker

    dgbaker Well-Known Member
    PartnerNOC

    Joined:
    Sep 20, 2002
    Messages:
    2,578
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Toronto, Ontario Canada
    cPanel Access Level:
    DataCenter Provider
    sorry about that.... :D :p
     
  17. PWSowner

    PWSowner Well-Known Member

    Joined:
    Nov 10, 2001
    Messages:
    2,948
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    ON, Canada
    I'm sure you are. :D

    I've decided I'm going to put a forum up on my new site in the near future. I'm sure you can help me get that one going when I put it up. ;)
     
  18. djmerlyn

    djmerlyn Well-Known Member

    Joined:
    Aug 31, 2004
    Messages:
    203
    Likes Received:
    1
    Trophy Points:
    16
    You know this thread does bring up a good point. As security gets tighter and tighter on the software side, people still haven't cought up on the human element of security.

    There are a few hosts that I've been able to social engineer an account username/password out of, but it was always on the honest side trying to get into a design customers account and they couldn't remember the info. But it does make you realize one thing in-particular, a lot of hosts outsource there live chat clientelle- but forget to have them sign something along the lines of a privacy policy.

    It would probably not take but an hour or two to social engineer a user/pass out of a typical live chat operator.

    Thanks for posting this, and for the reminder~ ;)
     
  19. Edizon

    Edizon Well-Known Member

    Joined:
    Feb 18, 2003
    Messages:
    90
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    AZ
    Since we all are sharing passwords here mine is:

    http://86.75.30.9
    Username: Root
    Password: *************

    I can't believe people sometimes! I have given my wife, my credit card numbers, access to all of my bank accounts, told her all of my deepest and darkest secrets. But she will NEVER have my root password! :D

    Of course if anyone was foolish enough to blindly give out there account passwords via IM, E-Mail, or to anyone wearing a "Gods name is Xeon" t-shirt. Probably deserves to have his server hijacked. I would feel bad for the rest of the net with what the hijacker will do with the server though.
     
  20. PWSowner

    PWSowner Well-Known Member

    Joined:
    Nov 10, 2001
    Messages:
    2,948
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    ON, Canada
    Good one. :cool:
     

Share This Page