I just posted this on the DDO forums, but of course, all you guys not associated with DDO need to know this too...
I'm sorry to say that my site, rjcyberware.com, was hacked on Friday, and I only discovered the hack this evening. They apparently got in through the FTP portal (based on the logs). How they got my FTP password, I don't know.
The hackers installed a keylogger trojan on my site. IF you have been to Rjcyberware since Friday, please run a virus scan. It is possible to pick up the trojan from visiting my site.
Note that the Character Planner program itself was unaffected, and is safe. However, the page that you download the planner from WAS affected, so if you went there, you should check your system. My virus scanner is callling the trojan Mal_Hifrm-2.
I have removed the virus from my home page and the character planner page, they are safe right now. I think I have also removed it from everywhere else, but I need to double check the forum directories (there are a lot of them). Of course, I've plugged the security hole (hopefully permanently).
I apologize profusely for this. It couldn't have happened at a worse time, since we went through all those releases and a lot of people were coming to get the planner. Just make sure to check your machines.
I have the IP address that was used for the attack, and it tracks back to a bank in Maryland. I don't know if that's a real address or if it was bounced somehow. But I've gone ahead and contacted the authorities in Maryland just in case. Who knows, maybe we'll get lucky and someone working at a bank in Maryland will be getting a visit from the police tomorrow.
Last edited by RonHiler; 08-24-2009 at 08:11 PM.
"They laughed when I said I was going to be a comedian ... They're not laughing now." - Bob Monkhouse