general Vulnerability to Cyber attacks

[Traitorous Pony 29]

It's no paranoia when it comes to website security and server security. Cyber criminals and hackers are an infestation of the internet and have many tools at their disposal that can bring any site to a grinding halt or worse.

DDoS is the most common type of hack, and complete destruction of a site is a big possibility, even here. I've seen many sites i was part of go down and never come back, just gone.

I wouldn't be so cocky as to say a company site is impossible to hack into. Cyber criminals/hackers have many ways to exploit weaknesses in security, they can test for weakness by testing out programs, if it fails, they can tweak it to be stronger and punch through any defense.

DDoS attacks are not to be taken lightly as it could mean worse things to come. There are no "1 in a billion chance" situations, just when and how. These facts are no joke or to be dismissed as only an opinion.

I will not lie and say this site has a set chance/odds of being attacked and successfully destroyed. The proof lies in the past events.

If you guys have any stories about sites you've been in going down or worse, please share with us.

 

 

 

 

 

[Angle Alastor 3,805]

Hmm well the other day (can’t remember when ) that YouTube was down for 2 hours....

[Traitorous Pony 29]

Yes and i joked about it saying the hacker played their DDoS spell card.

Edited October 25, 2018 by Traitorous Pony

[Appley Hooves 136]

I was using CBC when it was hacked by The Syrian Electronic Army. Hello weird terribad english popups, but otherwise meh.

Also was a victim of the DLH hack a few years ago that they still claim never happened. DLH is a sketchy gaming news site infested with lots of nope for those not in the know, but they used to do decent game giveaways.

[Celtore 2,770]

There are protections available against distributed denial of service attacks and cloudflare (the forums' host) has a pretty good reputation when it comes to handling this particular type of attack. I wouldn't go so far as to categorize it as hacking though; it's too primitive. Unless the attacker built the bot network themselves rather than paying a lump of money to someone for temporary control of their network.

The most dangerous attack vector is the database. If you can find one vulnerable website with badly hashed (or plaintext) passwords, there's an excellent chance you can take those emails and passwords and use them on other services. Hell, you might even be able to directly sign into their email account, which is absolutely game over. Having a single password these days is a HUGE risk; if just one website you're signed up with is compromised, everything's compromised.

The big takeaway: use a password manager to keep track of all your passwords. You use a single password and it gives you encrypted access to all your passwords which, because now you no longer need to remember them, can be unique 64+ random characters long. I personally use keepass because it's open source, free of charge and offline. I don't have to trust a company to keep my passwords safe. That comes with some inconveniences though, so something like lastpass might be better.

[Retro*Derpy 3,187]

I got to watch BlueBorne and Heartbleed go wild for awhile before it was patched.

My IT instructor let us mess with both of them, to help learn a sense of cybersecurity.