Widget was hacked... Proof enclosed.

[EvilEngineer]

Someone was trying to inject code into the widget to down it tonight, and at the last moments it looks like they did it. The campaign needs to look into this quickly.

This is similar to a sql injection attack, and I pray that it didn't work as well as the hacker was hoping.


Proof someone was trying to inject code using the address bar slots.

 

[mexicanpizza]

We saw that too. Hopefully they were taking that into account.

Unless there really are people named Joe Smi^$100000000000^th

 

[bbachtung]

What could / would that do / have done?

 

[fortilite]

It didn't work probably, successfully injected code wouldn't be visible there.

 

[adpierce]

crazy if it's true

 

[defcreative]

OMFG, I WAS THINKING THE SAME THING!!

That looks like a INJECTION ATTACK.

 

[kutibah]

Bump!

 

[hypnagogue]

That could also have been caused by an internal error on the part of their servers. Definitely needs to be answered for though.

 

[Paulitician]

When I first looked at the title I just thought you were paranoid but that is indeed interesting. No wonder it was stuck at that amount for so long.

 

[rp4evar08]

Thats kinda sad, that I saw it too....

 

[Chauncy]

nt

 

[yongrel]

holy shit!

There are hackers who don't support Ron Paul?!

 

[burningfur]

Bump

 

[sirachman]

BUMP Holy shit Ron Paul Headquarters needs to get the ip of that doner!

 

[EvilEngineer]

Basically what an injection attack is designed to do is utilize character input bars to plant code that they hope the server will parse into actually command statements. It does it by first figuring out what the server is programmed in, then working to design a special character string to dump the current line of code the server would be working on and have it follow a different command... from which that point the hacker can almost have complete control.

They literally could be draining the entire database of CC#, address... etc

 

[alieas007]

I saw that too. I thought it was because of server overload / buffer overflow. Now I wonder if it was some type of attack tho...

 

[Ron2Win]

and so the attacks begin. This is only the beginning.

 

[rasheedwallace]

we need to hope that no one tries to pull some bullshit like the stolen CC shit last time in the MSM...

trying to discredit this.

 

[torchbearer]

Hmmmmmmmmmmmm

 

[boondoggle]

I called campaign. They're aware. Just a technical issue.

That would have been uber scary, though.