Yeah, I don't believe the file is there, but a crawler did find that sub domain at one point. I don't think anyone with ftp access on the mod team put it there. I just found it odd the timeline matched with the sophos block. Thank you for the quick reply my man. Go ahead and hide and or delete this thread. I made it public hoping the reports would reach you.
I think it's all false. I can't see any HTTP requests on there which confirm there was ever malware present. Just them checking URLs of where malware could be, and seeing it's not there...
The only person with any server access is me (and that's always been the case). We also run our webservers in containers, which are destroyed and created often from a very basic Docker image.
I think our SSO flow is triggering a lot of antiviruses, because it generates multiple random strings.
I will leave the thread up. If anyone wants to look into this further and prove me wrong, then that is welcome.
That's great to hear you go to such lengths to make sure everything is secure. Thank you for not jumping the gun and straight up bashing me for stumbling across something that made me question the timeline. Never doubted your skills nor intention. Thanks again. I'm off to bed, driving the mom to dialysis in 4 hours. Have a great night fam. <3
Yeah, I don't believe the file is there, but a crawler did find that sub domain at one point. I don't think anyone with ftp access on the mod team put it there. I just found it odd the timeline matched with the sophos block. Thank you for the quick reply my man. Go ahead and hide and or delete this thread. I made it public hoping the reports would reach you.
I think it's all false. I can't see any HTTP requests on there which confirm there was ever malware present. Just them checking URLs of where malware could be, and seeing it's not there...
The only person with any server access is me (and that's always been the case). We also run our webservers in containers, which are destroyed and created often from a very basic Docker image.
I think our SSO flow is triggering a lot of antiviruses, because it generates multiple random strings.
I will leave the thread up. If anyone wants to look into this further and prove me wrong, then that is welcome.
That's great to hear you go to such lengths to make sure everything is secure. Thank you for not jumping the gun and straight up bashing me for stumbling across something that made me question the timeline. Never doubted your skills nor intention. Thanks again. I'm off to bed, driving the mom to dialysis in 4 hours. Have a great night fam. <3