- Important: All passwords were reset on 06/15/11. Old passwords will no longer work. Click here to retrieve your password.
- Subscribe to Our Free Dewsletter
We are non-commercial, all volunteer and supported by our readers. Please help sustain the Dew by making a donation.
Recently, the Dew has come under an attack from presumed terrorists. The Patriot Act was useless to help keep us safe. These people are smart, motivated, well-financed and uncaring.
This was a malicious attack. We don’t have any private information or accounts to steal, so none was at risk. It was just a mean spirited bastardly thing to do. We join a long, and some distinguished, list of sites that have been attacked and hacked.
For weeks, these criminals have been bombarding the dew with site registrations – often as many as 20,000 in a single day hoping to find a weakness to exploit. We have continued to ratchet up security settings, adding layers of security and tests – sometimes hourly – hoping they would just give up. Apparently, it just made them mad. (I apologize, will you stop now? Please?)
Generally speaking, these types of terrorists are sponsored by the Eastern European mafia, though they could be from anywhere (you are all suspects). They use sophisticated computers to attack sites. When that doesn’t work, they turn to the third world and pay a few pennies to people who would starve otherwise to spend their days in front of a computer hoping to post a link to site and earn their dirty money. (I’ll feed you if you stop. Please.)
Most recently, they injected a Wonka Trojan Horse – I kid you not, though I assume you can get one by visiting your local chocolate factory website or by googling it. The code was planted in above our “header” that appears at the top of each of our pages and began setting off alarms. I received my first email about it late Monday AM. We ran Trojan scans on our server, didn’t find it, made some changes and hoped we were OK. About 3:30 PM, I got an email from a Dew reader reporting that his computer had been wiped out by a virus on our site. We immediately shut down the site.
The virus was found. The holes in our security were plugged. We examined many thousands of files for additional infection. We deleted many registered users (comment and author users have been preserved. We reset all cookies and all passwords (if you are registered on the Dew, your old password will no longer work and you must click the “Lost your password?” link to receive your new password via email). We installed a firewall on our cloud server and drastically altered privileges of users that had permission to get to the administration side of our site.
We thought all was OK. We hoped all OK. But it the Trojan reappeared. So we spent Tuesday and Wednesday going through the site. Reinstalling everything. Wiping most all files. Restoring from back ups (nothing was lost). Manually going through each of the thousands of folders to check dates and review data.
Since the Dew’s beginning, we purposely allowed some functions to be easy and rich for our readers and users. Functions that we knew made us vulnerable should some nefarious type wish us harm. No longer will the links in your comments be hot. No longer will images or html code be accepted comments. No longer will users be able to use short easy to remember passwords.
We have turned off new registration for the time being (we’ll announce a new policy soon) – if you wish to submit a story, send me an email and I’ll set you up. We reviewed logs and banned and blacklisted suspect IP addresses (this is a waste of time as they hide behind proxy servers all over the world). We have washed, cleaned and have hope. All to say, the site is back on. You might notice a few changes and some features that we haven’t gotten to work, yet, but… we hope again (ahh, the arrogance of hope!).
Don’t count on it. Check your computer’s security settings (especially if you use a PC) and take things seriously (but, no immediate need for plastic wrap or duct tape). If you get warned by a browser message, believe it, stop and let me know (click here to send an email report). If you haven’t already, please install virus protection software on your computer (Avast, McAffee, etc.) and for goodness sake, back up your computer regularly.
We must remain vigilant – individually and as a community. If you notice something suspicious, please let me know.
Unlike a recent President, we have little hope of “smoking them out of their holes.” My preference is that they would just go back to them.
Worthy of Comment
Also on the Dew
"Where your treasure is, there will your heart be also." -- Matthew 6:21. On April 4, 1967, exactly one year before he was assassinated, Martin Luther King, Jr. made public his opposition to the Vietnam War, articulated in his iconic "Beyond Vietnam" speech. Presented at Riverside Church in New York City, "Beyond Vietnam" was the most controversial speech King ever delivered. In it, he confronted head-on America's "triple evils" -- racism, economic injustice, and militarism -- and called for "a radical revolution of values" to restore our nation's integrity. Afterwards, many supporters, black and white, abandoned him for daring to mix the Read on →
"Government should prevent an immoderate accumulation of riches." -- James Madison In a previous post, we revisited Martin Luther King, Jr.'s iconic "Beyond Vietnam" speech of April 4, 1967. King, confronting head-on America's "triple evils" of racism, economic injustice and militarism, challenged America to find its true values and "come home." Polls and statistics suggest that, in the 47 intervening years, America has not "come home" and sadly is further from home than ever. King knew "Beyond Vietnam" would be controversial. He devoted more effort into preparing it than to any other speech. As feared, he was roundly criticized -- by blacks Read on →
The book review I just finished repeatedly asks, “What endures?” The author offers one possible answer: “Spaces in the heart that accommodate the absent.” When I read this, I had just learned of the deaths of Peter Matthiessen and Thomas Polgar. Matthiessen was the prolific writer and author of a multitude of books, including The Snow Leopard, his account of a grief-stricken journey to the Himalayas. Polgar was a legendary CIA officer and the last station chief in Saigon. His final cable from Vietnam quoted Jorge Santayana that those who do not know history are condemned to repeat it. Both lived full li Read on →
The modern oil industry, vertically integrated exploration, extraction, refining and distribution of oil on a mass scale, began no later than 1825 in Tsarist Russia. In 1825 Russia produced 3500 tons of crude and refined it, mostly into kerosene. By 1850 the Russian output had doubled to over 7000 tons. By 1906 Russia had a pipeline over 400 miles long stretching from the oil fields in Azerbaijan to the Black Sea port of Batumi, the first major pipeline in the world. By the 1900 there were great strides being taken to develop oil fields in the United States and at Read on →