trying to find it, but as usual search engines aren’t returning shit.
You must log in or # to comment.
I saw a snippet of it.
The code was using a function to connect to mysql that was deprecated in PHP 5 and removed in PHP 7. So they must have been running PHP 5.x. It also contained an obvious SQL injection vuln (although that wasn’t used for the hack).
Assuning this is real deal (it looks like it), found it pretty easy with startpage
I dismissed that one because it looked too official, but yeah, a bit more digging shows its a new account, so its likely the leak.
Thanks!
