All purchasers, including myself and my nonprofit, of an extension called JoomDonation has been threatened by a hacker. We all began receiving the following email this morning. IN a nutshell, they have hacked JoomDonation and acquired emails and account info supposedly including credit cards. It involved AdminTools because they mention in their threat that they will take down ALL associated sites that used this extension, and that AdminTools cannot protect us. I feel confident in AdminTools security and this threat cannot take our sites down, but when in the midst of such a thing it messes with your confidence at some level that all of our nonprofit sites could be taken down within the next 3-5 days even with AdminTools.
(JoomDonation site is now down, hopefully for maintenance and to fix the hacking of their site) Hopefully hundreds of nonprofit sites are not next)
US based FBI and Homeland Security have been contacted by us. The reason for posting here is for reassurance of the safety of our sites)
Email copied in full with sensitive information ***'ed;
Hello Blair *****
How the hell are you? No need to ask, I’m fine!
I’m the one who has hacked all of your sites, emails, accounts etc. that has been using JoomDonation.com site/components. Scaring? Hell Yea :-)
About 15 months ago, I was able to penetrate into several Joomla sites. One of these luckies was JoomDonation.com After a while I realised that their crappy components were used by other Joomla developers too so I injected my shells into JoomDonation.com components. As per result, I’ve a list of 300000+ Joomla users+emails and you’re just one of them, lucky thing :-)
Don’t you believe? Follow me on twitter.com/joomleaks or #joomleaks hashtag and you’ll see the database of JoomDonation.com as a beginning.
Yea Yea I know you all have scanners, firewalls, admin tools etc installed on your server/site but you what? F*ck em all. They’re just noob tools. Think about, I’ve injected my own shells into 10000+ Joomla sites and none of you or your magic tools have been awared of.
WARNING: You have 5 days to clean up your sites then my bot will start putting your sites down. If your site was not so valuable for me, removing the components would be enough. If so, then I will most probably blackmail you soon :-)
Want an advice from a hacker? Don’t use any script from Thailand/Vietnam developers, their code is so crappy :-) Try Indian quality.
This email was sent to all JoomDonation.com users. We’ll meet again if you have accounts registered to other Joomla developers :-)
This was my thanksgiving gift, keep yourself safe ;-)
JnLiau
(JoomDonation site is now down, hopefully for maintenance and to fix the hacking of their site) Hopefully hundreds of nonprofit sites are not next)
US based FBI and Homeland Security have been contacted by us. The reason for posting here is for reassurance of the safety of our sites)
Email copied in full with sensitive information ***'ed;
Hello Blair *****
How the hell are you? No need to ask, I’m fine!
I’m the one who has hacked all of your sites, emails, accounts etc. that has been using JoomDonation.com site/components. Scaring? Hell Yea :-)
About 15 months ago, I was able to penetrate into several Joomla sites. One of these luckies was JoomDonation.com After a while I realised that their crappy components were used by other Joomla developers too so I injected my shells into JoomDonation.com components. As per result, I’ve a list of 300000+ Joomla users+emails and you’re just one of them, lucky thing :-)
Don’t you believe? Follow me on twitter.com/joomleaks or #joomleaks hashtag and you’ll see the database of JoomDonation.com as a beginning.
Yea Yea I know you all have scanners, firewalls, admin tools etc installed on your server/site but you what? F*ck em all. They’re just noob tools. Think about, I’ve injected my own shells into 10000+ Joomla sites and none of you or your magic tools have been awared of.
WARNING: You have 5 days to clean up your sites then my bot will start putting your sites down. If your site was not so valuable for me, removing the components would be enough. If so, then I will most probably blackmail you soon :-)
Want an advice from a hacker? Don’t use any script from Thailand/Vietnam developers, their code is so crappy :-) Try Indian quality.
This email was sent to all JoomDonation.com users. We’ll meet again if you have accounts registered to other Joomla developers :-)
This was my thanksgiving gift, keep yourself safe ;-)
JnLiau
