Hacker wants to teach me a lesson??
I've been battling a hacker on this blog for the past two weeks. Perhaps you noticed the pharma spam redirects that just wouldn't go away, despite reinstalling WordPress, moving servers, switching to a default theme, removing all plugins, locking down the admin with HTTP authentication, changing ownership and permissions on all files, etc. etc. Just to clarify it's not just me doing the battling, I have had TONS of help from a couple of Netconcepts' finest sysadmins (a big shout-out to Dave and Drew for the late nights!). It occurred tonight to Dave that this attack might be personal, because the hacker was vehemently expending so much effort to break back in and cause havoc each time that a hole was closed. But what did I do to deserve such violence? And to also target the blogs of my three children and of my Netconcepts colleague Chris Smith is really sick.
A helpful visitor emailed me a couple hours ago a screenshot of a popup window with a ransom note of sorts. Apparently the hacker heard me present at PubCon on December 5th and didn't like me and/or what I had to say. The message was clear: either the hacker says his piece on this blog or the attacks will continue full-force. Here's the screenshot:
That's pathetic -- resorting to a criminal act against me instead of simply engaging me in a dialogue through commenting or emailing me. I'm happy to take constructive criticism. But Mr. Lawless Hacker: don't threaten me, don't try to intimidate me, don't steal from me, don't vandalize my sites, and don't harm my family or my colleagues in the process. Okay, so you want to take me to task for something, so be it. Do it in the comments.
8 comments
-
Do you think this is deterring anyone from commenting on your site for fear they will also be targeted? I removed the URL section of my comment for this reason.
Apart from this, talk about a gross misuse of ability and knowledge. Even if your actions were really so offensive to this individual, that's simply a bi-product of the internet. It gives no one the right to deface your website.Comment by Al [Visitor]
—
12/24/07 @ 12:18
-
The "hacker" asked for and open discussion with new posts? I wouldn't think moderating feedback qualifies as an open discussion?
I don't know you from Adam but I'd be curious how I would have perceived your comments about net security. I think the "hacker" although breaking the law might be teaching something you lack? Maybe some humility?
Good luck with this, I hope one if not both of you learn something from it all.
FYI it's pretty hard to read the "ransom note".Comment by HossMonkey [Visitor]
—
12/24/07 @ 12:44
-
That hacker guy from PubCon is an amateuer. I've fended off many junior programmer like he before. My site is testiment to my supreme sysad resiliance. My site is a thorn in the site to a big company and even THEY have not been able to take me down! He, he. Mr. Spencer, just drop me a line if you need help fending off baby PubCon hack-boy.
Comment by Frank Darabon [Visitor] · http://countrywidehomeloansucks.com — 12/26/07 @ 23:58
-
HossMonkey,
If I didn't have the comments set to moderate, this blog would quickly be overwhelmed with spam comments. It's still an open discussion, just not a real-time one.
I try to be genuinely helpful in my presentations and certainly not arrogant. The speaker feedback I receive tends to confirm that I am on the right track. I'm still scratching my head as to what motivates this hacker in his personal vendetta against me. He's even instant messaged me, under the guise of dialogue, but it was a ruse aimed to lure me into a malware trap.
Thanks for your comments.Comment by Stephan Spencer [Member]
—
12/27/07 @ 15:36
-
Wow, this guy got really irritated somehow. It's sad when people have to step this low in an attempt to communicate their feelings. He should take a class on interpersonal skills, even read the book "How to win friends and influence people" wouldn't hurt.
How does this guy sleep at night?Comment by David [Visitor]
—
01/02/08 @ 12:05
-
Hey Stephan, I haven't been to your blog for a few months and I come back to this! Too bad. I attended a class you gave at UofW last year- where, BTW, you stressed ethics- I never got the arrogance vibes and came away with valuable info about SEO that has proven worthy many times since, in deference to your hacker.
I'm in a corporate environment, where mentoring and working well with others are valued traits, and "teaching lessons of humility" is the stuff that gets you a fast pass to the resume line. Here's the ultimate truth- decision makers with money love your stuff. If hacker opens a professional discourse, we may find he could bring a lot of value to the table.
Until then, stay true to the mission as we know it. Best wishes for 2008!Comment by bladeslinger [Visitor]
—
01/02/08 @ 18:25
-
I read article and this is amazing what this guy could do. He survived all of your tricks "despite reinstalling WordPress, moving servers, switching to a default theme, removing all plugins, locking down the admin with HTTP authentication, changing ownership and permissions on all files, etc.". I would disagree with person saying he is an "amateuer", I think he has very sharp skills.
If I could hire this guy to work for me I would do it.Comment by Gopi [Visitor] — 01/02/08 @ 19:48
-
I get hacked all the time and now I was "fired" by my web host because it was too much trouble. The hacker would crash their server all the time.
Comment by CarlosX [Visitor]
· http://www.CarlosX.com —
01/20/08 @ 05:56
Comment feed for this post