关于博客服务器被黑的事情

发表于 更新于 分类于

2022年10月4日23时54分,我收到一封邮件。这件事就从这个邮件开始。

邮件全文如下:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
发件人:Melanie Peitz<kontakt@smartemotions.de> (由 sh-642160441@eu.hosting-webspace.io 代发)
收件人:我<*****@**.com>
时  间:2022年10月04日 23:54 (星期二)

---------------------------------------------------------------------------------------------

Hallo Henry Tighe,

dies ist eine automatische Bestätigung, dass deine Nachricht bei mir angekommen ist.

Ich melde mich schnellstmöglich bei dir.

Viele Grüße
Melanie Peitz

Impressum
Dr. Melanie Peitz
Coaching und Beratung
Berger Weg 5a
45549 Sprockhövel


Telefon: 0160 60 87 661
eMail:   kontakt@smartemotions.de

Hier der Inhalt deiner Nachricht:

Name

    Henry Tighe

Nachricht

    Your Site Has Been Hacked

    PLEASE FORWARD THíS EMAiL TO SOMEONE íN YOUR COMPANY WHO íS ALLOWED TO MAKE iMPORTANT DECíSiONS!

    We have hacked your websíte https://dumblog.top and extracted your databases.

    How did this happen?

    Our team has found a vulnerabílity within your site that we were able to exploit. After fínding the vulnerabilíty we were able to get your database credentíals and extract your entire database and move the informatíon to an offshore server.

    What does thís mean?

    We will systematícally go through a series of steps of totally damaging your reputation. Fírst your database wíll be leaked or sold to the highest bidder whích they will use wíth whatever theír intentíons are. Next íf there are e-mails found they wíll be e-mailed that their ínformatíon has been sold or leaked and your site https://dumblog.top was at fault thusly damaging your reputatíon and havíng angry customers/assocíates with whatever angry customers/assocíates do. Lastly any línks that you have indexed in the search engínes will be de-indexed based off of blackhat techníques that we used ín the past to de-índex our targets.

    How do í stop this?

    We are wílling to refrain from destroyíng your site’s reputatíon for a small fee. The current fee ís $3000 in bitcoins (BTC).

    Please send the bitcoin to the followíng Bítcoín address (Make sure to copy and paste):

    bc1q7vyvktqpgex0pqrzktvyuyu07fcafqst8m7ch9

    Once you have paid we wíll automatícally get informed that it was your payment. Please note that you have to make payment wíthin 5 days after receiving thís e-maíl or the database leak, e-mails díspatched, and de-índex of your site WiLL start!

    How do í get Bítcoins?

    You can easily buy bitcoíns vía several websites or even offline from a Bítcoín-ATM.

    What if i don’t pay?

    íf you decide not to pay, we will start the attack at the indícated date and uphold ít until you do, there’s no counter measure to thís, you will only end up wastíng more money tryíng to fínd a solutíon. We wíll completely destroy your reputation amongst google and your customers.

    Thís ís not a hoax, do not reply to this email, don’t try to reason or negotíate, we wíll not read any replíes. Once you have paid we will stop what we were doing and you wíll never hear from us again!

    Please note that Bitcoín ís anonymous and no one will find out that you have complied.

E-Mail

    *****@**.com

Auswahl

 	Ich interessiere mich unverbindlich für dein Coaching-Angebot

翻译如下(机翻):

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
你好,Henry Tighe,

这是一个自动确认,您的消息已经到达我的手中。

我会尽快和你联系的。

诚挚的问候。
Melanie Peitz

公司信息
Melanie Peitz博士
辅导和咨询
Berger Weg 5a
45549 Sprockhövel

电话:01606087661
电子邮件:kontakt@Smartemotions.de

以下是您的信息内容:

名字

    Henry Tighe

消息

    您的站点已被黑客攻击。

    请将这封电子邮件转发给贵公司中被允许做出重要决策的人!

    我们已经入侵了你的网站 https://dumblog.top 并提取了你的数据库。

    怎么会出这事?

    我们的团队在您的站点中发现了一个我们能够利用的漏洞。在发现漏洞后,我们能够获得您的数据库凭据,提取整个数据库,并将信息移动到离岸服务器。

    这是什么意思?

    我们将系统地经历一系列完全损害您声誉的步骤。首先,你的数据库将被泄露或出售给出价最高的竞标者,他们将使用这些数据库,无论他们的意图是什么。接下来,如果发现电子邮件,他们将收到电子邮件,告知他们的信息已被出售或泄露,因此您的网站 https://dumblog.top 有过错,从而损害了您的声誉,并导致愤怒的客户/同事做出任何愤怒的客户/同事的行为。最后,您在搜索引擎中索引的任何链接都将基于我们过去用来对目标进行索引的BlackHat技术进行去索引。

    我怎么才能阻止这一切?

    我们愿意避免为了一小笔费用而破坏您网站的声誉。目前的费用为3,000美元比特币(BTC)。

    请将比特币发送到以下比特币地址(请务必复制并粘贴):

    Bc1q7vyvktqpgex0pqrzktwyuyu07fafqst8m7ch9。

    一旦您付款,我们将自动得到通知,这是您的付款。请注意,您必须在收到此电子邮件或数据库泄漏后5天内付款,发送的电子邮件和您的网站将开始去索引!

    我怎样才能得到比特币?

    你可以很容易地通过几个网站购买比特币,甚至可以通过比特币自动取款机离线购买。

    如果我不付钱呢?

    如果你决定不付款,我们将在指定的日期开始攻击,并支持它,直到你这样做,没有任何反措施,你最终只会浪费更多的钱试图找到解决方案。我们将彻底摧毁你在谷歌和你的客户中的声誉。

    这不是恶作剧,不要回复这封邮件,不要试图推理或谈判,我们不会读任何回复。一旦你付了钱,我们将停止我们正在做的事情,你将永远不会再听到我们的消息!

    请注意,比特币是匿名的,没有人会发现你遵守了规定。

邮箱

    *****@**.com

选择

    我对你提供的无义务指导很感兴趣

看上去很有来头,可是一个静态博客怎么会有数据库捏?

如果黑到服务器上,那就雨我无瓜了,反正是 Vercel 的服务器。

🤓