Police turns Darknet sites with child pornography – 87,000 user

Prison for Darknet site operators for child pornographyThe police is a massive blow to several operators of a Darknet site spread child pornography that were used by 87,000 users!

Lt. Heise, the main culprit, a 39-year-old man from Hessen, Germany, was already arrested a few weeks ago and is now!

Certainly the police authorities will now determine the worldwide the Retriever of these pages and it remains to be seen, but there will certainly be many arrests!

What, scares us like many others on forums, is the massive number of Abrufern such child pornography sites. This arguably material should be reported, where children against their will to sex etc. were forced!

In this context we would like to point out again, that each admin of Web pages (E.g. a Joomla website), observe updates to, because such criminals increasingly use the memories of chopped Web space,! There pictures and videos in any subdirectory can be wonderfully hide! You must always keep in mind that you are fully responsible Web space and Web server for your and therefore also fully stick!

IMPORTANT: Joomla upgrade to 3.7.3

Now, Joomla update

Now update Joomla!
The Joomla development team has released a new update to 3.7.3 connecting 230 bugs! Including 3 critical bugs (known as vulnerabilities) be closed of, allowing hackers to break into the Web space and to gain administrator privileges!

The a Sicherheitslüche (vulnerability) is listed in the CVE in the CVE-2017-9933 and is thus extremely critical. Here, hackers can falsify them with the addresses transmission of pages (URLs) and create new user using SQL injection, among other things that come with rights of an administrator to everything up!

Hazards, if updates are not installed:

Previously chopped webspace made often unusable, to annoy their customers. Today chopped Web space are often used by hackers for the dissemination of illegal content! Illegal content can be: spam, child pornography, terrorist material and pirated music and videos! The liability is with the webmaster, so the person who has installed Joomla!

Liability of the webmaster for missing updates:

For that to hold more times: webmasters are for recording the scripts in the Web space fully responsible and liable. You may play only a flawless software! The server hosters can not know what customers in the Web space play a and is obliged not to a monitoring! It is so important to either update or get an update service (maintenance agreement) to opt for the Joomla webhosting.

Joomla updates often cause errors and error messages:

For Joomla we find again and again that updates often "pop" and then extreme interventions are necessary, which also often several hours mean work to fix Joomla so, that you can install all updates! Same installation an even the same plugin can be often do not update! Then also removing this plugin is not possible and also do a clean install is under certain circumstances! Here it seems that hackers already "have dented to Joomla", penetrated within Joomla, but it have not yet reached to cause greater damage!

It is so it sure as little plugins and themes in Joomla to install and to remove all other, which are not required or which are unclear, the origin and safety! In addition, ensure that these plugins are also regularly updated, where it is never known when this plugin updates are given! Much worse is the fact that there are some developers of plugins, all 2-3 require an update days, while often not dealing with safety-critical error, which must be closed. The big problem here, that insecure Web master be and look daily for updates at the beginning and after they no longer worry about some time!

Escape the update madness

To escape this update craze, is only possible if new projects and if necessary migrate existing projects on other platforms where no CMS systems are more needed on the server and copied the pages by a generator a will and therefore are separated from each other.

Websites to develop better systems – check times at: https://www.prima-website.com

Joomla in everyday life not sure:

Summary: Joomla is a very often used CMS system, that guarantees a safe operation in everyday life! The open source Joomla is designed under the crawlable by hackers after dangerous programming errors (security holes = vulnerabilities), which allow the hacking the hackers. After the announcement of an update, compare the old program code against the new code hacker and can easily identify the changes. Also known as diff, that exactly the altered program lines of two files that contain program code list being compared (old to new) and the changes serve. Here a simple trailing example:

1023 (-) $administrator = $_REQUEST[‘administrator’];
1023 (+) $administrator = $_POST[‘administrator’];

In line 1023, a change was made in the file xyz.php by using REQUEST instead, changed to POST. As a result, that in the old version of the URL, the variables for the administrator could be passed with and who has not updated, still can be passed! Use of POST, however, is possible not via URL!

After a break-in, it is not enough:

The misconception that only the scripts in the file level must be replaced after a burglary, is deceptive and wrong! The content is located at Joomla in the database. This can be changed after a break-in, and Yes, it can be inserted program code, which is dangerous and can contain php code! So can a hacker in an article (so any Web page of the website, program code inject, which call will change the scripts in the file system or performing other activities! The finding of such smuggled a program code is very difficult because nobody knows except the hacker, has been what a copied into the database and where! New in playing the file structure and then the installation of updates, so bring no success!

Erroneous program code will be introduced also in image files, that filed in the file system. The Retriever Gets a page with a manipulated image, may reap the Retriever a virus in his computer or another common action is performed!