looks like joomla org hacked

[sc00zy]

Now the page I see when visiting the link, shows a page full of adverts, all other links go to joomla.org/parking and an option to make an offer for the domain via sedo???

Look twice the poster posted the wrong url He typed http://www.joomal.org.

[sc00zy]

Maybe it was just a force hack on a username/password. Let's wait for more news.

[dragonrider]

Now the page I see when visiting the link, shows a page full of adverts, all other links go to joomla.org/parking and an option to make an offer for the domain via sedo???

Look twice the poster posted the wrong url He typed http://www.joomal.org.

Doh!

[bennieblanco]

whoever is workin on it , should remove the image first.
firefox developer extention
show image links

[exrace]

How long could this take?
I still see the graphic.

[sc00zy]

I just log in to http://www.joomal.org and get this, Look like site hacked

Template File Not Found! Looking for template:
- Names deleted -

Please remove the names of the hackers. You're actually giving them credits by posting their names.

[thestratocaster]

Hello all,

Just wondering if anyone else noticed that the main joomla site has been hacked? lol?

This doesn't say very much about Joomla security.....

Can someone explain?

[MOD note: Hacker reference removed. No need to encourage script kiddies. - pe7er]

[exrace]

Surprised moderators didn't remove the image... 

[iwebdesign]

That's really really bad.
What should I tell my customers? 

I'd be glad, if the joomla.org team explains in detail, how this could have happened.

Good luck and best regards!

[sc00zy]

Please remove the screenshots and names of the hackers in your posts. You're giving them credits by doing this!

Thanks!

[exrace]

Please remove the names of the hackers. You're actually giving them credits by posting their names.

You think the mods would be ALL OVER this. 

[sc00zy]

You think the mods would be ALL OVER this. 

Please note it's weekend and a lot of mods are still asleep.

[joomila]

what version of Joomla is running joomla.org??

[Joomla Starter]

  URGENT I  cant believe it  The official Page of joomla org was hacked today at the moment i write this post ,
I attached  a pdf file


www.joomla.org

[exrace]

The admins are too I guess...

[exrace]

Hummm...
I thought forums and www site on same server?

ping http://www.joomla.org
Pinging joomla.org [72.9.243.251] with 32 bytes of data:

ping forum.joomla.org
Pinging forum.joomla.org [65.254.35.66] with 32 bytes of data:

Edit: I stand corrected.

[ilox]

Being discussed here... http://forum.joomla.org/index.php?topic=203014.new;topicseen#new
And I am not sure the PDF is necessary, the staff are aware of the attack. The staff have closed the site though it has again been hacked since their closure hence the change of the hack graphic for the original logo. I think there is a lot going on behind the scenes over there

[sc00zy]

There are a couple of threads about this allready. Please remove the PDF. You're giving the hackers credits by posting screenshots and their namers.

Thanks!

[MMMedia]

I was hoping the one that posted it would edit their own post.  I was giving them time to do it.  Obviously they won't, or aren't going to, so I will remove it.

[ilox]

When the site was first closed it was showing the Joomla logo as expected  (I have a screenshot of it). It was just a little later that the hacked image appeared, about 5-10 minutes after the first one showed up (I have a screenshot). I would hazard a guess that even though the site was closed down the hacker somehow still had access and was able to change the graphic over.
------------------------------------------------
Update: Index page now amended and that graphic has gone, thank goodness

[Joomla Starter]

ok  I have delete the file, it was just for help.

[sc00zy]

No problem

Thanks!

[rsd]

Does enyone knows if the Joomla site's host is in a Joomla owned server or if it is a shared hosting environment?

[sc00zy]

Does enyone knows if the Joomla site's host is in a Joomla owned server or if it is a shared hosting environment?

Joomla has got their own servers at Rochen.

[GollumX]

can anyone confirm whether joomla.org was running 1.0.13?

[sc00zy]

can anyone confirm whether joomla.org was running 1.0.13?

It isn't sure yet how joomla.org got hacked. They're on it as we speak.
It's most likely joomla.org was running 1.0.13

[infograf768]

Merging all similar posts.

[rsd]

Does enyone knows if the Joomla site's host is in a Joomla owned server or if it is a shared hosting environment?

Joomla has got their own servers at Rochen.

So, there is a security flaw in joomla indeed

[ot2sen]

Please remove the screenshots and names of the hackers in your posts. You're giving them credits by doing this!

Thanks!

Agree. Image removed above.

[MMMedia]

It may not be in Joomla! itself.  It could be in a 3PD extension. 

Before making statements please wait until all the information is in.  It isn't right or fair or responsible to just throw things out there that may not be true.