FFL 7 FFLV .org security alert - PLEASE READ

rupa rupa at fflvrindavan.org
Tue Oct 19 19:19:59 EDT 2010 

Dear Mahaprasad, thanks for your offer to help, we have cleaned up the site, but not sure what is next, I have passed the message to our webmaster he will know better.
Thanks
Your servant
rupa raghunath das
fflvrindavan.org
fflv.blogspot.com
Our Spring-summer report is available for download at: http://www.fflvrindavan.org/index.php?S=1&Article=181

On Oct 17, 2010, at 5:26 PM, Hume, Daniel(Qatar) wrote:

> Dear Ravin,
> I am so glad to hear that you have successfully completed the challenge you have set, to assist FFLV in the noble work and services they provide to the Vaishnava community!
>  
> I am sad to hear the unfortunate hacking of the FFL website.
> I would like to step forward and assist in this matter with immediate effect.
> As you are aware I have been working with Deloitte USA / India within the Security and Privacy services, so I have a number Senior Consultants with specialization and certification in Vulnerability assessment, be it Web site or application code review, whom I can approach to assist FFL to find a remedy for this vulnerability.
> I hope to arrange this on an individual basis and with no FEE as a friendly gesture.
>  
> Dear Rupa, PAMHO
> You are welcome to connect me to  Paul Turner or to the person who is responsible for the web site and allow me to make the initial current state assessment and I will have one of our senior consultant to carry out further technical assessment and a remediation exercise.
> I hope to hear from you,
> Y/S Maha Prasad Das
>  
> Daniel Hume
> Senior Manager - IT Advisory
> Performance & Technology Services
> KPMG, Doha, Qatar
> Tel.       +974 4457 6420
> Fax        +974 4436 7411
> Mobile  +974 6654 7189
> Email:    danielhume at kpmg.com
>  
> KPMG is a Registered Firm under the Qatar Law
>  
>  
> From: Ravin Ganatra [mailto:ravinjganatra at hotmail.com] 
> Sent: Saturday, October 16, 2010 10:31 PM
> To: Hume, Daniel(Qatar)
> Subject: FW: FFL 7 FFLV .org security alert - PLEASE READ
>  
> HariBol Maha 
>  
> Hope all is well .. as you heard we DID IT !!!100% success . what a week .. will send you all a full email on monday ..
> I tried to meet Mimi yesterdaty but they wouldnt let me out or her in to the airport.. big shame .. i spent 6 hours couped up in the transit area  ,,.. anyway we will have to make the time to go together...
>  
> In the meantime please raed the emailbelow from Paul Rodney Tailor who runs FFL Global ..., maybe you can help
> 
> Ravin J Ganatra
> www.Gurujiproductions.com
> +44 7973 889717
>  
>  
> This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed.The sending of this email does not constitute an offer.If you have received this email in error please notify the system manager. Please note that the views or opinions presented in this email are solely those of the author and do not necessarily represent those of the company.The recipient should check this email and any attachments for the presence of viruses. Guruji Productions accepts no liability for any damage caused by any virus transmitted by this email.’
> 
> 
> 
>  
> > Subject: Fwd: FFL 7 FFLV .org security alert - PLEASE READ
> > From: rupa at fflvrindavan.org
> > Date: Thu, 14 Oct 2010 09:17:17 +0530
> > To: friends at fflvrindavan.org
> > 
> > Help!!!
> > Thanks
> > Yours
> > rupa raghunath das
> > fflvrindavan.org
> > 
> > 
> > > Dear friend,
> > > 
> > > Over the last few months the FFL.org site has been hacked and recently the hacks have been happening every day. Even after changing the password and deleting bogus files, within a day, the same files and code is appearing on our site causing bogus promotions of pharmaceuticals. Unfortunately, the same has happened with one of our affiliates, FFL Vrindavan. Apparently these attacks are becoming common place with small businesses and non-profit sites and are not noticed until one does a search from Google. The site appears normal, but lurking underneath in the code are redirects and ads.
> > > 
> > > I am urgently appealing to you! If you know of a web security expert that can help us analyse and then repair this hack once and for all, it will be greatly appreciated. Please do what you can to ask around. We are not able to pay the expensive prices that are usually requested by security companies, so we are relying on you, our friend, to ask around to see if someone can do this pro bono or at a very reasonable price for FFL. 
> > > 
> > > Treat this matter as extremely urgent. 
> > > 
> > > Thank you sincerely, 
> > > 
> > > Paul Rodney Turner
> > > Director, Food for Life Global
> > > Rupa Raghunath das director FFLV.
> > 
> > 
> > _______________________________________________
> ***********************************************************************
> The information in this e-mail is confidential and may be legally privileged. It is intended solely for the addressee. Access to this e-mail by anyone else is unauthorized. If you have received this communication in error, please address with the subject heading "Received in error," send to the original sender , then delete the e-mail and destroy any copies of it. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. Any opinions or advice contained in this e-mail are subject to the terms and conditions expressed in the governing KPMG client engagement letter. Opinions, conclusions and other information in this e-mail and any attachments that do not relate to the official business of the firm are neither given nor endorsed by it.
> 
> KPMG cannot guarantee that e-mail communications are secure or error-free, as information could be intercepted, corrupted, amended, lost, destroyed, arrive late or incomplete, or contain viruses. 
> 
> This email is being sent out by KPMG International on behalf of the local KPMG member firm providing services to you.  KPMG International Cooperative ("KPMG International") is a Swiss entity that serves as a coordinating entity for a network of independent firms operating under the KPMG name. KPMG International provides no services to clients. Each member firm of KPMG International is a legally distinct and separate entity and each describes itself as such.  Information about the structure and jurisdiction of your local KPMG member firm can be obtained from your KPMG representative.
> 
> This footnote also confirms that this e-mail message has been swept by AntiVirus software. . 
> ***********************************************************************
> 
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.fflvrindavan.org/pipermail/friends_fflvrindavan.org/attachments/20101020/fa937d93/attachment-0001.html>

More information about the Friends mailing list