Author Topic: CathInfo server got hacked (Read 2448 times)

Matthew · « **on:** September 21, 2025, 10:58:18 AM »

I found malware on my server today. It kept generating 10,000 PHP files in a certain folder.
I have removed the malware, changed passwords, and have run several malware detectors.
I will have to keep a close eye on things, as I bring the server back online.

Please pray for me. This has been a horrible way to start my day, supposed to be a day of rest, and the Feast of St. Matthew.

The Mrs · « **Reply #1 on:** September 21, 2025, 11:01:45 AM »

Pax Vobis · « **Reply #2 on:** September 21, 2025, 11:10:47 AM »

Thank you for the work!

Mat183 · « **Reply #3 on:** September 21, 2025, 01:19:17 PM »

I just noticed on the top of the CI home page what I've pasted below for the first time today.

Discover more

Vatican City

the bible

message board

Internet forum

the Bible

Bibles

Nehemiah

Cath-Info
Old Testament

Fortitude · « **Reply #4 on:** September 21, 2025, 01:37:38 PM »

Quote from: Matthew on September 21, 2025, 10:58:18 AM

I found malware on my server today. It kept generating 10,000 PHP files in a certain folder.
I have removed the malware, changed passwords, and have run several malware detectors.
I will have to keep a close eye on things, as I bring the server back online.

Please pray for me. This has been a horrible way to start my day, supposed to be a day of rest, and the Feast of St. Matthew.

Let’s pray for the intercession of the Blessed Virgin Mary, and her heel.

Interesting timing after this past week’s noticing of (((bad actors))) through many good posts and threads. This is more than a technical problem. Thousands of hidden PHP files can let someone quietly take control of the forum, delete or change posts, lock out moderators, redirect members, or even spread malware. We have to ask, could access still remain after cleanup? Are all backups truly safe? Are there unknown admin accounts or hidden scripts left behind? Could members computers have been affected just by visiting? This isn’t just about a slow server it’s about the safety and integrity of the whole community. Every unexplained file could be a doorway back in.

Gray2023 · « **Reply #5 on:** September 21, 2025, 02:48:27 PM »

Happy Feast of St. Matthew.

AnthonyPadua · « **Reply #6 on:** September 21, 2025, 03:45:33 PM »

Quote from: Matthew on September 21, 2025, 10:58:18 AM

I found malware on my server today. It kept generating 10,000 PHP files in a certain folder.
I have removed the malware, changed passwords, and have run several malware detectors.
I will have to keep a close eye on things, as I bring the server back online.

Please pray for me. This has been a horrible way to start my day, supposed to be a day of rest, and the Feast of St. Matthew.

Wow, is that why your computer was acting weird?

Also this effect users in any way? Like user passwords compromised? Or can users end up with the malware on their devices?

Happy feast day.

Matthew · « **Reply #7 on:** September 21, 2025, 03:50:15 PM »

Quote from: Fortitude on September 21, 2025, 01:37:38 PM

Let’s pray for the intercession of the Blessed Virgin Mary, and her heel.

Interesting timing after this past week’s noticing of (((bad actors))) through many good posts and threads. This is more than a technical problem. Thousands of hidden PHP files can let someone quietly take control of the forum, delete or change posts, lock out moderators, redirect members, or even spread malware. We have to ask, could access still remain after cleanup? Are all backups truly safe? Are there unknown admin accounts or hidden scripts left behind? Could members computers have been affected just by visiting? This isn’t just about a slow server it’s about the safety and integrity of the whole community. Every unexplained file could be a doorway back in.

It doesn't work that way. Browsing a website doesn't allow any files to be installed on your computer. The browser doesn't allow that; it would be a security risk.

So don't worry. It's only my problem, not yours.

Matthew · « **Reply #8 on:** September 21, 2025, 03:52:38 PM »

Quote from: Mat183 on September 21, 2025, 01:19:17 PM

I just noticed on the top of the CI home page what I've pasted below for the first time today.

Discover more

Vatican City

the bible

message board

Internet forum

the Bible

Bibles

Nehemiah

Cath-Info
Old Testament

That's a google ad. I checked the HTML source.

Simeon · « **Reply #9 on:** September 21, 2025, 04:09:32 PM »

Over the course of the last few days, whenever I came here to read, I could not help but notice that the Kirk threads were hosting hundreds of guests at the same time. One or two members viewing, and guests ranging from the high hundreds to the two hundreds.

In my experience, that's anomalous. During the whirlwind following the fake Trump shooting, the threads were more active, but not like what I've seen on the Kirk threads.

Who has been reading these threads?

I wonder if we are not being both surveilled and experimented on like lab rats. Are they monitoring our reactions? Monitoring our divisions? Are they data mining? Creating profiles on the active members?

I've been considering all this and now this thread that the server was hacked.

Coincidence? I don't know anything about IT. But I dont think I'm the only person who has noticed the high incidence of new troll accounts over the last year or so, pushing the perverse Fuentes POV.

Is this forum being curated for the sake of a future round up?

Also, I'm at a relative's house right now, and they have the Kirk memorial celebration on the TV. I'm shocked to the depth of my DNA. I hope others are watching, and someone starts a thread to discuss this. It's very high ritual - almost everyone will fall for it.

Incredulous · « **Reply #10 on:** September 21, 2025, 04:57:17 PM »

Quote from: Simeon on September 21, 2025, 04:09:32 PM

Also, I'm at a relative's house right now, and they have the Kirk memorial celebration on the TV. I'm shocked to the depth of my DNA. I hope others are watching, and someone starts a thread to discuss this. It's very high ritual - almost everyone will fall for it.

Actually, Charlie's doing okay.

He's under very professional care, recuperating from a total facial/body makeover at an exclusive cosmetic surgery spa in Sweden.

Drolo · « **Reply #11 on:** September 21, 2025, 05:01:30 PM »

Geremia · « **Reply #12 on:** September 21, 2025, 05:08:07 PM »

Quote from: Matthew on September 21, 2025, 10:58:18 AM

I found malware on my server today. It kept generating 10,000 PHP files in a certain folder.

I get mindless bots that do similar things (I've had to limit PHP execution time), but an executable got on your server?

Twice dyed · « **Reply #13 on:** September 21, 2025, 05:10:28 PM »

Quote from: Simeon on September 21, 2025, 04:09:32 PM

Over the course of the last few days, whenever I came here to read, I could not help but notice that the Kirk threads were hosting hundreds of guests at the same time. One or two members viewing, and guests ranging from the high hundreds to the two hundreds.

In my experience, that's anomalous. During the whirlwind following the fake Trump shooting, the threads were more active, but not like what I've seen on the Kirk threads.

Who has been reading these threads?

I wonder if we are not being both surveilled and experimented on like lab rats. Are they monitoring our reactions? Monitoring our divisions? Are they data mining? Creating profiles on the active members?

I've been considering all this and now this thread that the server was hacked.

Coincidence? I don't know anything about IT. But I don't think I'm the only person who has noticed the high incidence of new troll accounts over the last year or so, pushing the perverse Fuentes POV.

Is this forum being curated for the sake of a future..."

Evidently false "Guests". For example , Sept 10 2025 I posted about "NEPAL", and today it has 84K views??!! For a day to day event?...The "France Deploys" post has 149.3K posts.!! That's impossible, No? How can there be so many views when there aren't that many guests to begin with, or am I missing something?
This might have been the 9/11 of CathInfo...9/11/2025 AD.

Incredulous · « **Reply #14 on:** September 21, 2025, 05:12:53 PM »

Quote from: Simeon on September 21, 2025, 04:09:32 PM

Over the course of the last few days, whenever I came here to read, I could not help but notice that the Kirk threads were hosting hundreds of guests at the same time. One or two members viewing, and guests ranging from the high hundreds to the two hundreds.

In my experience, that's anomalous. During the whirlwind following the fake Trump shooting, the threads were more active, but not like what I've seen on the Kirk threads.

Who has been reading these threads?

I wonder if we are not being both surveilled and experimented on like lab rats. Are they monitoring our reactions? Monitoring our divisions? Are they data mining? Creating profiles on the active members?

I don't know how Cathinfo could be configured to guard against ʝʊdɛօ-masonic trolls?

Like you say, they are likely using this trad forum as a Beta site, testing out Kayfabe tales and seeing if they get any traction? I always felt the 'Anonymous" topics were of this nature.

How about making it a paid membership, more exclusive and more ID secure? Or setting-up some member parameters where not just a тαℓмυd thumping kike can sign on and start posting?

Author Topic: CathInfo server got hacked (Read 2448 times)

Matthew

CathInfo server got hacked

The Mrs

Re: CathInfo server got hacked

Pax Vobis

Re: CathInfo server got hacked

Mat183

Re: CathInfo server got hacked

Fortitude

Re: CathInfo server got hacked

Gray2023

Re: CathInfo server got hacked

AnthonyPadua

Re: CathInfo server got hacked

Matthew

Re: CathInfo server got hacked

Matthew

Re: CathInfo server got hacked

Simeon

Re: CathInfo server got hacked

Incredulous

Re: CathInfo server got hacked

Drolo

Re: CathInfo server got hacked

Geremia

Re: CathInfo server got hacked

Twice dyed

Re: CathInfo server got hacked

Incredulous

Re: CathInfo server got hacked