Looks like someone managed to hack their way into one of the servers at the hosting service that Blogomania rents space through. I was sitting here late last night (much later than I should have been) when I tried to go back to my site and ran smack dab into the image on the right here.
“Now that’s interesting.” I thought to myself.
First thought was that maybe my domain had been hijacked as the other weblogs I run here, Anne’s, Cindy’s, Courtney’s and so on, were all still A-OK and I could still login to my account which meant they hadn’t change the password on me. By the time I got the source file downloaded, though, the other sites here had also been hacked and I knew it wasn’t just a domain hijack. Which is good because those can be a pain to get corrected.
Instead it looks like someone got a hold of the root account on just one of the servers, as not all Blogomania clients got hit, and went around changing just the index.html files for every site on the server to let us know we had been ‘p0wned’ or whatever. OK, I’ll try to act suitably impressed.
It took just a simple index page rebuild under MovableType to undo the damage done. All of 20 seconds and we were back to normal. On the one hand it bothers me that there are people with nothing better to do than hack sites, but on the other I’m glad that they appear to be only letting people know they are vulnerable instead of wrecking pointless damage by deleting all of the accounts on a server. So, I guess it could’ve been worse and I should just be happy my downtime was minimal. Is this were I’m supposed to attribute my good fortune being an act of God?