Gaijin Gunpla

So I was minding my own business at home (Okay, I’m not gonna lie. I was arguing with someone on the internet.) when I checked my mail on my phone and noticed I’d received a few mails to my gaijingunpla address. People were having problems getting on my site. (Thanks to everyone who contacted me. I really appreciate it) Using my iPhone I tried to access my site and was redirected to a site about home tutoring. I’m not the sharpest knife in the drawer but I’m pretty sure I didn’t need home tutoring. Oh my! I’ve been hacked!

The redirect was actually to an app extension on that site so my phone tried to open it with my japanese dictionary app, while my iPad asked if I wanted to open with Google Drive. How bizarre. When I tried to access from a PC I got this.

Ahhh! Malware!

I immediately contacted my web guy (I’d say webmaster but that would just inflate his ego even more) and while I had him on the phone he tried to access from his end and he confirmed what I suspected. Hacked. My web guy is very good and he quickly dove into the matrix and proceeded to do battle with the evil forces determined to bring down a small-time site about plastic model robots whose market audience is mostly male adults who refuse to grow up. He worked furiously.

Knowing time was of the essence he first downloaded a backup of Gaijin-Gunpla’s entire wordpress and then went for the FTP to make sure we could save the images. My site without images would be lost. I had already contacted my host to inform them of the hack and had them reset all passwords, the new passwords I immediately gave to my web guy and he started the long task of downloading everything.

While I waited for some news, good or bad, I looked again at the current state of my site using Google’s Safe Browsing diagnostic.

The malware was coming from two different sites but fortunately nothing had been passed on to any people viewing Gaijin-Gunpla.com That was good to hear. Very anxious I went to bed and actually fell asleep quite quickly.

The next morning when ‘my web guy’ was updating me he informed me that my site was very sick, that there was a lot of bad lines of script hidden throughout the code. The best option, he stated, was to basically delete everything and start again by reinstalling WordPress. The ‘delete everything’ caused me more than a little concern. What if data was lost? What if even reinstalling didn’t solve the problem? What if over three years of my life suddenly disappeared down the drain? I resolved not to think about it and asked him to continue doing whatever he thought necessary. He pulled up his sleeves and went straight to it. As you can see, he was successful and Gaijin-Gunpla is back up and still going strong. Once we were back up I set to the task of changing the passwords for everything which is a pain in the ass when you have to do it on your computer, iPhone, and Ipad and then started running virus scans on my PC at home and Mac at work. Did a key-logger somehow get onto one of my devices and pick up my password? Was there a security gap in WordPress that somehow was exploited? We don’t know how it happened but I’m going to try my best to make sure it doesn’t happen again. If I lost my site, would building Gunpla bring me the same joy or would the sense of loss be enough that I gave up the hobby altogether. Fortunately for me, I don’t have to find out!

Now back to that Plamo talk.

15 Responses so far.

  1. ClayCannonII says:

    Glad to see you’re back

  2. Tony says:

    Phew…. that was a close one. Now about that Tallgeese review…

    • syd says:

      I was hoping to have it up on Friday but, as you can probably imagine, due to the events of the last couple of days it has been delayed. I think I’ll be able to complete it so it’s ready to go by monday.

  3. Ryan says:

    Back up your back up of the site then back that up and hide it in a safe. I have precious pictures of a deceased pet of mine and I have 5 back ups of them all. I value them more than my gunplay collection.

    This is a excellent site and a joy to read, let’s make sure it’s never lost 🙂

    But everyone who posts on here gives an email when doing so. So I would keep an eye out for suspicious emails for the next few days just to be safe 😉

    Good to have you back Syd

  4. chooster says:

    I enjoyed this blog post alot. The choice of words and the addition of that picture for your web guy was really cool. Kept me on the edge my seat, this post did. 😀

  5. Valmont says:

    glad this site is alright. i learned a lot of things bout gunpla just by reading lots of your previous build. O(≧∇≦)O

  6. TimmyJ says:

    My friend had a wordpres site that got hacked recently. I honestly think there is a flaw in WordPress somewhere right now. I just got done coding my site my self so if anything happens, I just re-upload it and it should be good as new in theory. Anyways, I’m glad your site is back up and ok.

  7. jon says:

    its good that gaijin is back

  8. Thomas says:

    That sucks, Syd, but I’m glad to see it works again. It’s like nothing ever happened. Your “web guy” is one talented man. I agree that the password thing is a real pain. I’ve got so many devices (because what’s a manchild to do otherwise?) and it’d take me forever to reset passwords. Which I already had to do a few years back when my modem decided to commit suicide.

  9. well i nearly cried when i cant access ur web, cause im waiting for that tallgeese also,,,, haa

  10. Asian1skill says:

    wow no wonder i couldnt access your site. thought it was weird but glad your back and all that hard work didnt go to waste props to ur web guy haha

  11. SavviMaple says:

    IF you’ve lost everything, best you could do is start where you left off?

    All those years would be wasted indeed. But not all as US READERS WILL REMEMBER!!!

    But, I’m glad the worse didn’t happen. As it may end Gaijin-Gunpla and we readers will have a hole to fill up. 😛

  12. mykman05 says:

    welcome back gaijin!!! hurrah…

Leave a Reply