Comments on: Site hacked

By: Pierre Igot

Pierre Igot — Wed, 14 May 2008 19:43:20 +0000

I have absolutely no doubt that there are lots of legitimate Internet services in Russia working very well. But the reality appears to be that Russian servers are also used to host a wide range of spamming and hacking programs. Maybe certain laws are not as strictly enforced over there or are not as strict to begin with. There must be a reason.

And I also suspect this is partly why legitimate correspondence from Russia is not getting to you. Due to the abundance of spam coming from Russia, overzealous spam filters probably also block an abnormally large proportion of legitimate e-mail messages.

By: henryn

henryn — Wed, 14 May 2008 19:24:06 +0000

This is getting way off-topic.

Yes, you can sign up for free accounts on Russian servers. I recently obtained mail.ru and tut.by (Belarus) email accounts — with the aid of a Belarusian friend who did the sign-ups for me, as the interfaces are naturally entirely in Russian. Both are POP accounts, but I have found it possible, if a bit chancy, to navigate the webmail interfaces by guesswork.

Why? To find out why emails sent to me from Eastern Europe often don’t reach me via my American ISP-provided mail server and/or to provide a more viable alternative.

So far, these services have been fine, no problem — less than with my name-brand ISP mail.

By: sol

sol — Tue, 13 May 2008 12:42:48 +0000

Pierre : The email I recieved was also an .ru address. I visited the site, which I suspect is a free email service similar to Hotmail. If you know enough Russian (I don’t), you could in theory obtain such an address without ever setting foot in Russia. The hackers are probably from Russia, but not nessarily.

As you mentionned, not all Russians are bad, and some Canadian, American and European hackers do as much harm as Russian hackers.

By: Pierre Igot

Pierre Igot — Tue, 13 May 2008 12:08:37 +0000

Warren: Actually, now that you mention it, the passwords are encrypted (using MD5). So I guess they must be safe, even if the hackers did get access to my MySQL tables (which I am not sure they did). (I don’t know exactly how MD5 works and how difficult it is to decrypt such encrypted passwords.)

sol: Part of the clues that I was being hacked yesterday was a short flurry of new user registrations with .ru e-mail addresses. I have been getting such user registrations regularly for a long time (I usually delete a new user if his/her registration is not quickly followed by a first blog comment), but I never associated it with hacking attempts. Yesterday, however, the two definitely occurred at the same time, which makes me think that they are linked.

Unfortunately, lots of on-line hacking and spamming takes place through Russian servers. That does not mean that all Russians are bad, of course :). But it does seem that Russia has become something of a haven for on-line “terrorists.”

By: sol

sol — Tue, 13 May 2008 02:29:05 +0000

Maybe it is not a coincidence that about a couple of months ago I recieved an email from Russia asking for money to support a single mother with a poor daughter… My English is not perfect, but I could tell that it was written by someone who knew the language pretty well. The text was written, and systematic errors were introduced into it to make it appear more «realistic.»

Luckily, it happened only once, and I added that address to my rule in Mail : «Direct à la corbeille» (Directly to trash).

Let’s hope this won’t happen again. Good luck with the new measures, Pierre !

By: Warren Beck

Warren Beck — Tue, 13 May 2008 01:49:15 +0000

Thanks for the heads up, Pierre. I guess the passwords were not encrypted; so I’ve changed mine.

I’m beginning to think that the internet’s days are numbered, at least as an open medium.