The xoops.org and dev.xoops.org have been hacked. A screenshot: http://img317.imageshack.us/img317/1260/xoopsorg8ac.jpg

No needs for screenshot, sites still defaced

I'm suprised with the news.

Perhaps, this attack is not via XOOPS but via some other applications like awstats.

Sorry might be a stupid question, but what does it mean by hacked?

Was it a virus attack or something?

Yesterday evening, European time, a group of hackers broke into the xoops.org server and corrupted most if not all files.

This included our most recent backups so quite a bit has been lost. Fortunately the database was not affected, so the content is for the most part still there.

We have worked very hard in the past 26-30 hours to get xoops.org up and running, but it will take a while yet, since we are also taking the opportunity to make some adjustments.

We have not a confirmed point of entry, but the hackers did claim to use the xml-rpc interface - however we doubt that very much.
Instead we have identified suspicious behaviour that could be an exploit of a vulnerability in the Apache version, we were using on the webserver and we have upgraded the Apache version to counter this.

We are still working on it and we also want to make sure that the hole is indeed closed, so it will take a little while before the xoops.org websites are re-opened.

Maybe you should establish temporary site with minimum content, like news and links to some other XOOPS sites like local support sites and some links to sites with main modules.

Would you mind if I ask, if you have Xoops Protector module installed?

And last but not least - Thank you and all others, who are working hard to have our site reopened.

xoops.org is on-line again :D:D:D

hi Mithrandir.

It is unfortunate to be cracked via such a recent security hole abou Apache.

You did the best.

I believe that It's a just misfortune.