Strict Standards: Declaration of JParameter::loadSetupFile() should be compatible with JRegistry::loadSetupFile() in /var/www/html/jc.infradapt.com/libraries/joomla/html/parameter.php on line 512

Infradapt Blog

This is some blog description about this site

Font size: + –

Bookmark

Russian “Sandworm” Hack Reveals 5-Year Cyber Espionage Campaign

Friday, 17 October 2014

John Reilly

IT Blog

0 Comment

A cyber espionage campaign called "Sandworm" has been discovered recently. The hacking attack, said to be based in Russia, has been targeting government leaders and organizations since as early as 2009. The researchers responsible for the discovery, iSight Partners, came to this conclusion after examining the code used in the campaign.

As reported by WIRED magazine, iSight has only uncovered a few victims targeted by Sandworm, and they are significant ones that include:

North Atlantic Treaty Organization (NATO).
Ukrainian and European Union governments.
Energy and telecommunications firms.
Defense companies.
An unnamed United States academic singled out for his attention to Ukrainian issues.

Sandworm uses a zero-day vulnerability which is found in all Windows operating systems since Windows Vista (Windows 7, 8, 8.1). Sandworm itself seems to target important documents and emails consisting of an intelligence or diplomatic nature; specifically those about Ukraine, Russia, or other countries in the region. The rest of the list includes stealing SSL keys and code-signing certificates; information which could lead to the spread of Sandworm to their government networks.

The name "Sandworm" is derived from the multiple references to the science fiction series Dune in the code. In Frank Herbert's books, Sandworms are seen as divine, immortal creatures who are the direct actions of God. These colossal creatures have been given titles such as "Great Maker," "The Maker," "Worm who is God," and so forth. They are seen as earth deities and have also been given names like "Old Man of the Desert," and "Grandfather of the Desert." References to characters from the Dune series can be seen in the code itself. Obviously, whoever created the campaign is a huge Dune buff with a God complex.

The attacks were first discovered earlier this September, exploiting a zero-day vulnerability and spreading via infected PowerPoint attachments and files. This vulnerability messes with how a system handles PowerPoint files, and allows hackers to execute malicious code within the affected systems. A backdoor is opened, which lets hackers access the system whenever they please. The patch is now available to fix the vulnerability.

Why Russia?
According to WIRED, there are two details which led to the code probably originating in Russia:

Two details of Sandworm lead the iSight Partners to conclude it's originating from Russia, possibly as a state-sponsored operation. First, files used for the command-and-control servers are written in Russian; and second, the victims targeted and the type of information used to lure them into clicking on malicious attachments focus on topics that would be of interest to Russia's adversaries. One attachment purports to be a list of pro-Russia "terrorists" that the victim is invited to view.

Also of interest is the type of malware being used to infect systems. The infected emails install variants of BlackEnergy on systems, a tool used by hackers to perform denial of service attacks. In 2008, this was the primary method used by Russia in its cyber war with Georgia (the country, not the U.S. state). Coincidentally, this happened just before the espionage campaign began. Thanks to the low-profile nature of the BlackEnergy malware, the attacks could be disguised as the average botnet.

When cybercrime is done on a state-level, you know it can be a dangerous gamble to let it go undetected. You should take the same precautions with your business, especially when new threats are revealed to the public. Infradapt can keep your systems secure with our remote monitoring services, and keep your network sound with a Unified Threat Management solution. With UTM, you can expect strong firewalls, antivirus software, web content filtering, and much more. For more information about what Infradapt can do for your business, contact us at 800.394.2301.

Tags:

Hackers Malware Security

About the author

John Reilly

View author's profile More posts from author

John Reilly is Managing Partner at Infradapt, LLC. Prior to joining Infradapt, he was the President of Vital IT Solutions, Inc., where among other roles, he developed a methodology and approach for performing risk and compliance assessments.

Prior to Infradapt, Mr. Reilly founded Vital IT Solutions, Inc., Mr. Reilly worked with Expanets, Inc., as a Senior Converged Account Executive, specializing in VoIP and Security, and a Subject Matter Expert (SME) on HIPAA. His Expanets’ achievements included national Sales awards including Millionaire’s Club and pioneering VoIP deployments for regional clients.

Mr. Reilly also has direct work experience in the banking industry, where he worked in Sales and Management, and in manufacturing, where he worked as an Accountant. John earned his BS in Accounting at Gwynedd-Mercy College, while also studying Negotiation, Decision Making, and Creative Problem Solving. He holds a SANS GIAC security certification and is a member of the Philadelphia Chapter of InfraGard.

Author's recent posts

Tuesday, 19 June 2018 EHR and Other Technologies Moving Healthcare Forward

Friday, 15 June 2018 How Much Time Do You Spend on These Websites?

Wednesday, 13 June 2018 Tip of the Week: How to Improve Your Invoicing Processes

Tuesday, 12 June 2018 Cyberbullying is a Serious Issue Everywhere

Monday, 11 June 2018 How Does the A.I. in Reality Measure Up to Hollywood’s?

Comments

No comments made yet. Be the first to submit a comment

Joomla! Debug Console

170 Queries Logged

SELECT `data` FROM `p3sae_session` WHERE `session_id` = '5ccb65d1a736abbdad13b0272a4bc76e'
DELETE FROM `p3sae_session` WHERE `time` < '1713549687'
SELECT `session_id` FROM `p3sae_session` WHERE `session_id` = '5ccb65d1a736abbdad13b0272a4bc76e' LIMIT 0, 1
INSERT INTO `p3sae_session` (`session_id`, `client_id`, `time`) VALUES ('5ccb65d1a736abbdad13b0272a4bc76e', 0, '1713558687')
SELECT extension_id AS id, element AS "option", params, enabled FROM p3sae_extensions WHERE `type` = 'component' AND `element` = 'com_users'
SELECT b.id FROM p3sae_usergroups AS a LEFT JOIN p3sae_usergroups AS b ON b.lft <= a.lft AND b.rgt >= a.rgt WHERE a.id = 1
SELECT id, rules FROM `p3sae_viewlevels`
SELECT folder AS type, element AS name, params FROM p3sae_extensions WHERE enabled >= 1 AND type ='plugin' AND state >= 0 AND access IN (1,1) ORDER BY ordering
SELECT extension_id AS id, element AS "option", params, enabled FROM p3sae_extensions WHERE `type` = 'component' AND `element` = 'com_languages'
SELECT `query` FROM `p3sae_admintools_wafexceptions` WHERE (`option` IS NULL OR `option` = '') AND (`view` IS NULL OR `view` = '') GROUP BY `query` ORDER BY `query` ASC
SELECT `value` FROM `p3sae_admintools_storage` WHERE `key` = 'cparams'
SELECT * FROM `p3sae_admintools_ipautoban` WHERE `ip` = '3.138.138.144'
SELECT `source`,`keepurlparams` FROM `p3sae_admintools_redirects` WHERE ((`dest` = 'index.php/blog/entry/russian-sandworm-hack-reveals-5-year-cyber-espionage-campaign') OR (`dest` = 'index.php/blog/entry/russian-sandworm-hack-reveals-5-year-cyber-espionage-campaign') OR ('index.php/blog/entry/russian-sandworm-hack-reveals-5-year-cyber-espionage-campaign' LIKE `dest`)) AND `published` = '1' ORDER BY `ordering` DESC LIMIT 0, 1
SELECT m.id, m.menutype, m.title, m.alias, m.note, m.path AS route, m.link, m.type, m.level, m.language,m.browserNav, m.access, m.params, m.home, m.img, m.template_style_id, m.component_id, m.parent_id,e.element as component FROM p3sae_menu AS m LEFT JOIN p3sae_extensions AS e ON m.component_id = e.extension_id WHERE m.published = 1 AND m.parent_id > 0 AND m.client_id = 0 ORDER BY m.lft
SELECT * FROM p3sae_easyblog_configs WHERE `name` = 'config'
SELECT * FROM `p3sae_easyblog_acl` WHERE `published`='1' ORDER BY `id` ASC
SELECT * FROM `p3sae_easyblog_acl_group` WHERE `content_id`='1' AND `type`=' group'
SELECT `id` FROM `p3sae_easyblog_post` WHERE `permalink`='russian:sandworm-hack-reveals-5-year-cyber-espionage-campaign'
SELECT `id` FROM `p3sae_easyblog_post` WHERE `permalink`='russian-sandworm-hack-reveals-5-year-cyber-espionage-campaign'
SELECT * FROM p3sae_easyblog_post WHERE `id` = '149'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '25'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='149'
SELECT extension_id AS id, element AS "option", params, enabled FROM p3sae_extensions WHERE `type` = 'component' AND `element` = 'com_rereplacer'
SELECT extension_id AS id, element AS "option", params, enabled FROM p3sae_extensions WHERE `type` = 'component' AND `element` = 'com_easyblog'
SELECT * FROM p3sae_languages WHERE published=1 ORDER BY ordering ASC
SELECT id, home, template, s.params FROM p3sae_template_styles as s LEFT JOIN p3sae_extensions as e ON e.element=s.template AND e.type='template' AND e.client_id=s.client_id WHERE s.client_id = 0 AND e.enabled = 1
DELETE FROM `p3sae_easyblog_mailq` WHERE `status`='1' AND DATEDIFF(NOW(), `created`) >='7'
SELECT `id` FROM `p3sae_easyblog_mailq` WHERE `status`='0' ORDER BY `created` ASC LIMIT 5
SELECT * FROM `p3sae_easyblog_post` WHERE `publish_up`<='2024-04-19 20:31:27' AND `published`='2' AND `state`='0' ORDER BY `id` LIMIT 5
SELECT id, created_by FROM`p3sae_easyblog_post` WHERE `publish_down` > `publish_up` AND `publish_down` <= '2024-04-19 20:31:27' AND `publish_down` != '0000-00-00 00:00:00' AND `published` = '1' AND `state` = '0'
SELECT * FROM `p3sae_easyblog_uploader_tmp` WHERE `created` <= DATE_SUB('2024-04-19 20:31:27' , INTERVAL 120 MINUTE)
delete a, b from `p3sae_easyblog_post` as a inner join `p3sae_easyblog_revisions` as b on a.`id` = b.`post_id` where a.`published` = '9' and a.`created` <= DATE_SUB('2024-04-19 20:31:27', INTERVAL 3 DAY)
SELECT * FROM `p3sae_menu` WHERE `published`='1' AND `link` LIKE 'index.php?option=com_easyblog%'
SELECT a.rules FROM p3sae_assets AS a WHERE (a.id = 1) GROUP BY a.id, a.rules, a.lft
SHOW FULL COLUMNS FROM `p3sae_assets`
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT b.rules FROM p3sae_assets AS a LEFT JOIN p3sae_assets AS b ON b.lft <= a.lft AND b.rgt >= a.rgt WHERE (a.id = 1) GROUP BY b.id, b.rules, b.lft ORDER BY b.lft
SELECT * FROM p3sae_easyblog_post WHERE `id` = '149'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '25'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='149'
SELECT COUNT(1) as `voted`, `uid` FROM `p3sae_easyblog_ratings` WHERE `uid` = '149' AND `type`='entry' AND `created_by`='0' AND (`sessionid` = '5ccb65d1a736abbdad13b0272a4bc76e' OR `ip` = '3.138.138.144') GROUP BY `uid` ORDER BY NULL
SELECT AVG(`value`) AS `ratings` ,COUNT(1) AS `total` ,`uid` FROM `p3sae_easyblog_ratings` AS a WHERE a.`uid` IN(149) AND `type`='entry' GROUP BY `uid` ORDER BY NULL
SELECT a.* FROM `p3sae_easyblog_comment` AS a WHERE a.`post_id` IN(149) AND a.`published`='1'
SELECT a.`post_id`, COUNT(1) AS `count` FROM `p3sae_easyblog_comment` AS a WHERE a.`post_id` IN(149) AND a.`published`='1' GROUP BY a.`post_id`
select a.*, b.`post_id`, b.`primary` from `p3sae_easyblog_category` as a inner join `p3sae_easyblog_post_category` as b on a.`id` = b.`category_id` where b.`post_id` IN ( 149)
select a.*, b.`post_id` from `p3sae_easyblog_tag` as a inner join `p3sae_easyblog_post_tag` as b on a.`id` = b.`tag_id` where b.`post_id` IN ( 149)
select a.* from `p3sae_easyblog_revisions` as a where a.`id` IN ( 25)
select u.*, e.`id` as `eb_id`, e.`nickname`, e.`avatar`, e.`description`, e.`url`, e.`params` as `eb_params`, e.`published` as `eb_published`, e.`title` as `eb_title`, e.`biography`, e.`permalink`, e.`custom_css` from `p3sae_users` as u left join `p3sae_easyblog_users` as e ON u.`id` = e.`id` where u.`id` = 295
SHOW FULL COLUMNS FROM `p3sae_users`
SELECT * FROM `p3sae_users` WHERE `id` = 295
SELECT `g`.`id`,`g`.`title` FROM `p3sae_usergroups` AS g INNER JOIN `p3sae_user_usergroup_map` AS m ON m.group_id = g.id WHERE `m`.`user_id` = 295
select `a`.`id` as `cat_fg_id`, `a`.`category_id` as `cat_fg_category_id`, `a`.`group_id` as `cat_fg_group_id`, `fg`.`id` as `fg_id`, `fg`.`title` as `fg_title`, `fg`.`description` as `fg_description`, `fg`.`created` as `fg_created`, `fg`.`state` as `fg_state`, `fg`.`read` as `fg_read`, `fg`.`write` as `fg_write`, `fg`.`params` as `fg_params`, `f`.`id` as `f_id`, `f`.`group_id` as `f_group_id`, `f`.`title` as `f_title`, `f`.`help` as `f_help`, `f`.`state` as `f_state`, `f`.`required` as `f_required`, `f`.`type` as `f_type`, `f`.`params` as `f_params`, `f`.`created` as `f_created`, `f`.`options` as `f_options`, `fv`.`id` as `fv_id`, `fv`.`field_id` as `fv_field_id`, `fv`.`post_id` as `fv_post_id`, `fv`.`value` as `fv_value` from `p3sae_easyblog_category_fields_groups` as a inner join `p3sae_easyblog_post_category` as p on `a`.`category_id` = `p`.`category_id` inner join `p3sae_easyblog_fields_groups` as fg on `a`.`group_id` = `fg`.`id` inner join `p3sae_easyblog_fields` as f on `fg`.`id` = `f`.`group_id` left join `p3sae_easyblog_fields_values` as fv on `fv`.`field_id` = `f`.`id` and `fv`.`post_id` = `p`.`post_id` where `p`.`post_id` = '149'
select * from `p3sae_easyblog_meta` where `content_id` in (149) and `type` = 'post'
SELECT * FROM p3sae_easyblog_meta WHERE `content_id` = '149' AND `type` = 'post'
SELECT r.* FROM p3sae_rereplacer AS r WHERE r.published = 1 AND (r.area = 'articles') ORDER BY r.ordering, r.id
UPDATE p3sae_easyblog_post SET `hits` = (`hits` + 1) WHERE id = '149'
SELECT COUNT(1) FROM `p3sae_easyblog_featured` WHERE `content_id`='149' AND `type`='post'
SELECT COUNT(1) FROM `p3sae_easyblog_comment` WHERE `post_id`='149' AND `published`='1'
SELECT `group_id` FROM `p3sae_easyblog_category_fields_groups` WHERE `category_id`='3'
SELECT a.* FROM `p3sae_easyblog_fields` AS a INNER JOIN `p3sae_easyblog_category_fields_groups` AS b ON a.`group_id`= b.`group_id` WHERE b.`category_id`='3' AND a.`state`='1' ORDER BY a.`created` DESC
SELECT `key`,`value` FROM `p3sae_easyblog_post_assets` WHERE `post_id`='149'
SELECT SQL_CALC_FOUND_ROWS a.`id` AS key1, a.*, ifnull(f.`id`, 0) as `featured` FROM `p3sae_easyblog_post` AS a LEFT JOIN `p3sae_easyblog_featured` AS f ON a.`id` = f.`content_id` AND f.`type` = 'post' WHERE a.`published`='1' AND a.`state`='0' AND a.`access` = '0' AND a.`created_by` = '295' AND (1 <= (select count(1) from `p3sae_easyblog_post_category` AS acp INNER JOIN `p3sae_easyblog_category` as cat on acp.`category_id` = cat.`id` where acp.`post_id` = a.`id` and ( ( cat.`private` = 0 ) OR ( (cat.`private` = 1) and (0 > 0) ) OR ( (cat.`private` = 2) and ( (select count(1) from `p3sae_easyblog_category_acl` as cacl where cacl.`category_id` = cat.id and cacl.`acl_id` = 1 and cacl.`content_id` in (1)) > 0 ) ) ) )) AND ( (a.`source_type` = 'easyblog.sitewide') ) ORDER BY a.`created` desc LIMIT 5
SELECT `id` FROM `p3sae_menu` WHERE ( `link` LIKE 'index.php?option=com_easyblog&view=entry&id=149%' OR `link` LIKE 'index.php?option=com_easyblog&view=entry&id=149%' ) AND `published`='1' AND (`language`='en-GB' OR `language`='' OR `language`='*') LIMIT 1
SELECT a.`id`, a.`title` FROM `p3sae_easyblog_post` AS `a` WHERE a.`published` = '1' AND a.`state` = '0' AND a.`access`='0' AND a.`source_type`='easyblog.sitewide' AND a.`created` < '2014-10-17 13:58:02' ORDER BY a.`created` DESC LIMIT 1
SELECT a.`id`, a.`title` FROM `p3sae_easyblog_post` AS `a` WHERE a.`published` = '1' AND a.`state` = '0' AND a.`access`='0' AND a.`source_type`='easyblog.sitewide' AND a.`created` > '2014-10-17 13:58:02' ORDER BY a.`created` ASC LIMIT 1
SELECT * FROM p3sae_easyblog_post WHERE `id` = '148'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '430'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='148'
SELECT * FROM p3sae_easyblog_post WHERE `id` = '150'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '91'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='150'
SELECT * FROM p3sae_easyblog_post WHERE `id` = '150'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '91'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='150'
select `id` FROM `p3sae_easyblog_adsense` where user_id = '295'
SELECT * FROM p3sae_easyblog_adsense WHERE `id` = '2'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT m.id, m.title, m.module, m.position, m.content, m.showtitle, m.params, mm.menuid FROM p3sae_modules AS m LEFT JOIN p3sae_modules_menu AS mm ON mm.moduleid = m.id LEFT JOIN p3sae_extensions AS e ON e.element = m.module AND e.client_id = m.client_id WHERE m.published = 1 AND e.enabled = 1 AND (m.publish_up = '0000-00-00 00:00:00' OR m.publish_up <= '2024-04-19 20:31:27') AND (m.publish_down = '0000-00-00 00:00:00' OR m.publish_down >= '2024-04-19 20:31:27') AND m.access IN (1,1) AND m.client_id = 0 AND (mm.menuid = 155 OR mm.menuid <= 0) ORDER BY m.position, m.ordering
SELECT `group_id` FROM `p3sae_user_usergroup_map` WHERE `user_id` = '295'
SELECT * FROM `p3sae_easyblog_acl_group` WHERE `content_id` IN (2, 3) AND `type`=' group'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT * FROM p3sae_easyblog_tag WHERE `id` = '106'
SELECT * FROM p3sae_easyblog_tag WHERE `id` = '84'
SELECT * FROM p3sae_easyblog_tag WHERE `id` = '34'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT * FROM p3sae_easyblog_post WHERE `id` = '921'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '7886'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='921'
SELECT * FROM p3sae_easyblog_post WHERE `id` = '925'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '8236'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='925'
SELECT * FROM p3sae_easyblog_post WHERE `id` = '924'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '8237'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='924'
SELECT * FROM p3sae_easyblog_post WHERE `id` = '930'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '8239'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='930'
SELECT * FROM p3sae_easyblog_post WHERE `id` = '923'
SELECT * FROM p3sae_easyblog_revisions WHERE `id` = '8240'
SELECT * FROM `p3sae_easyblog_meta` WHERE `type`='post' AND `content_id`='923'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT COUNT(1) FROM (SELECT a.*, (count(b.id) - 1) AS `depth` FROM `p3sae_easyblog_comment` AS a INNER JOIN `p3sae_easyblog_comment` AS b LEFT JOIN `p3sae_users` AS c ON a.`created_by` = c.`id` WHERE a.`post_id` = '149' AND b.`post_id` = '149' AND a.`published` = 1 AND b.`published` = 1 AND a.`lft` BETWEEN b.`lft` AND b.`rgt` GROUP BY a.`id`) AS x
SELECT a.*, (count(b.id) - 1) AS `depth` FROM `p3sae_easyblog_comment` AS a INNER JOIN `p3sae_easyblog_comment` AS b LEFT JOIN `p3sae_users` AS c ON a.`created_by` = c.`id` WHERE a.`post_id` = '149' AND b.`post_id` = '149' AND a.`published` = 1 AND b.`published` = 1 AND a.`lft` BETWEEN b.`lft` AND b.`rgt` GROUP BY a.`id` ORDER BY a.`lft` asc LIMIT 0,20
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT * FROM p3sae_easyblog_post WHERE `id` = '149'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT id FROM p3sae_assets WHERE parent_id = 0
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT `template` FROM `p3sae_template_styles` WHERE `home`='1' AND `client_id`='0'
SELECT r.* FROM p3sae_rereplacer AS r WHERE r.published = 1 AND (r.area = 'component') ORDER BY r.ordering, r.id
SELECT r.* FROM p3sae_rereplacer AS r WHERE r.published = 1 AND (r.area = 'body') ORDER BY r.ordering, r.id
SELECT r.* FROM p3sae_rereplacer AS r WHERE r.published = 1 AND (r.area = 'everywhere') ORDER BY r.ordering, r.id
UPDATE `p3sae_session` SET `data` = 'joomla|s:1448:\"Tzo5OiJKUmVnaXN0cnkiOjE6e3M6NzoiACoAZGF0YSI7Tzo4OiJzdGRDbGFzcyI6Mjp7czo5OiJfX2RlZmF1bHQiO086ODoic3RkQ2xhc3MiOjQ6e3M6Nzoic2Vzc2lvbiI7Tzo4OiJzdGRDbGFzcyI6Mzp7czo3OiJjb3VudGVyIjtpOjE7czo1OiJ0aW1lciI7Tzo4OiJzdGRDbGFzcyI6Mzp7czo1OiJzdGFydCI7aToxNzEzNTU4Njg3O3M6NDoibGFzdCI7aToxNzEzNTU4Njg3O3M6Mzoibm93IjtpOjE3MTM1NTg2ODc7fXM6NToidG9rZW4iO3M6MzI6IjU2NWVhMWE3NDQzNjUxMTY3MDhmMTgzYjVkMTNkMzc3Ijt9czo4OiJyZWdpc3RyeSI7Tzo5OiJKUmVnaXN0cnkiOjE6e3M6NzoiACoAZGF0YSI7Tzo4OiJzdGRDbGFzcyI6MDp7fX1zOjQ6InVzZXIiO086NToiSlVzZXIiOjI1OntzOjk6IgAqAGlzUm9vdCI7YjowO3M6MjoiaWQiO2k6MDtzOjQ6Im5hbWUiO047czo4OiJ1c2VybmFtZSI7TjtzOjU6ImVtYWlsIjtOO3M6ODoicGFzc3dvcmQiO047czoxNDoicGFzc3dvcmRfY2xlYXIiO3M6MDoiIjtzOjg6InVzZXJ0eXBlIjtOO3M6NToiYmxvY2siO047czo5OiJzZW5kRW1haWwiO2k6MDtzOjEyOiJyZWdpc3RlckRhdGUiO047czoxMzoibGFzdHZpc2l0RGF0ZSI7TjtzOjEwOiJhY3RpdmF0aW9uIjtOO3M6NjoicGFyYW1zIjtOO3M6NjoiZ3JvdXBzIjthOjA6e31zOjU6Imd1ZXN0IjtpOjE7czoxMzoibGFzdFJlc2V0VGltZSI7TjtzOjEwOiJyZXNldENvdW50IjtOO3M6MTA6IgAqAF9wYXJhbXMiO086OToiSlJlZ2lzdHJ5IjoxOntzOjc6IgAqAGRhdGEiO086ODoic3RkQ2xhc3MiOjA6e319czoxNDoiACoAX2F1dGhHcm91cHMiO2E6MTp7aTowO2k6MTt9czoxNDoiACoAX2F1dGhMZXZlbHMiO2E6Mjp7aTowO2k6MTtpOjE7aToxO31zOjE1OiIAKgBfYXV0aEFjdGlvbnMiO047czoxMjoiACoAX2Vycm9yTXNnIjtOO3M6MTA6IgAqAF9lcnJvcnMiO2E6MDp7fXM6MzoiYWlkIjtpOjA7fXM6MzI6IjBkZDc4NzQyYjgxNjIzYzZjNTdkYmJiZGUxODE0MjdhIjtpOjE7fXM6MTA6Il9fZWFzeWJsb2ciO086ODoic3RkQ2xhc3MiOjE6e3M6NDoic2l0ZSI7Tzo4OiJzdGRDbGFzcyI6MTp7czo4OiJtZXNzYWdlcyI7Tjt9fX19\";' , `time` = '1713558687' WHERE `session_id` = '5ccb65d1a736abbdad13b0272a4bc76e'

66 Query Types Logged, Sorted by Occurrences.

SELECT Tables:

48 × SELECT `template` FROM `p3sae_template_styles`
19 × SELECT id FROM p3sae_assets
11 × SELECT * FROM p3sae_easyblog_post
10 × SELECT * FROM p3sae_easyblog_revisions
10 × SELECT * FROM `p3sae_easyblog_meta`
4 × SELECT r.* FROM p3sae_rereplacer AS r
4 × SELECT extension_id AS id, element AS "option", params, enabled FROM p3sae_extensions
3 × SELECT * FROM p3sae_easyblog_tag
2 × SELECT a.`id`, a.`title` FROM `p3sae_easyblog_post` AS `a`
2 × SELECT `id` FROM `p3sae_easyblog_post`
2 × SELECT * FROM `p3sae_easyblog_acl_group`
1 × SELECT * FROM p3sae_easyblog_meta
1 × SELECT COUNT(1) FROM `p3sae_easyblog_featured`
1 × SELECT a.*, (count(b.id) - 1) AS `depth` FROM `p3sae_easyblog_comment` AS a INNER JOIN `p3sae_easyblog_comment` AS b LEFT JOIN `p3sae_users` AS c ON a.`created_by` = c.`id`
1 × select * from `p3sae_easyblog_meta`
1 × select `a`.`id` as `cat_fg_id`, `a`.`category_id` as `cat_fg_category_id`, `a`.`group_id` as `cat_fg_group_id`, `fg`.`id` as `fg_id`, `fg`.`title` as `fg_title`, `fg`.`description` as `fg_description`, `fg`.`created` as `fg_created`, `fg`.`state` as `fg_state`, `fg`.`read` as `fg_read`, `fg`.`write` as `fg_write`, `fg`.`params` as `fg_params`, `f`.`id` as `f_id`, `f`.`group_id` as `f_group_id`, `f`.`title` as `f_title`, `f`.`help` as `f_help`, `f`.`state` as `f_state`, `f`.`required` as `f_required`, `f`.`type` as `f_type`, `f`.`params` as `f_params`, `f`.`created` as `f_created`, `f`.`options` as `f_options`, `fv`.`id` as `fv_id`, `fv`.`field_id` as `fv_field_id`, `fv`.`post_id` as `fv_post_id`, `fv`.`value` as `fv_value` from `p3sae_easyblog_category_fields_groups` as a inner join `p3sae_easyblog_post_category` as p on `a`.`category_id` = `p`.`category_id` inner join `p3sae_easyblog_fields_groups` as fg on `a`.`group_id` = `fg`.`id` inner join `p3sae_easyblog_fields` as f on `fg`.`id` = `f`.`group_id` left join `p3sae_easyblog_fields_values` as fv on `fv`.`field_id` = `f`.`id` and `fv`.`post_id` = `p`.`post_id`
1 × select a.* from `p3sae_easyblog_revisions` as a
1 × select u.*, e.`id` as `eb_id`, e.`nickname`, e.`avatar`, e.`description`, e.`url`, e.`params` as `eb_params`, e.`published` as `eb_published`, e.`title` as `eb_title`, e.`biography`, e.`permalink`, e.`custom_css` from `p3sae_users` as u left join `p3sae_easyblog_users` as e ON u.`id` = e.`id`
1 × SELECT * FROM `p3sae_users`
1 × SELECT `g`.`id`,`g`.`title` FROM `p3sae_usergroups` AS g INNER JOIN `p3sae_user_usergroup_map` AS m ON m.group_id = g.id
1 × SELECT COUNT(1) FROM `p3sae_easyblog_comment`
1 × SELECT `key`,`value` FROM `p3sae_easyblog_post_assets`
1 × SELECT `id` FROM `p3sae_menu`
1 × select `id` FROM `p3sae_easyblog_adsense`
1 × SELECT * FROM p3sae_easyblog_adsense
1 × SELECT m.id, m.title, m.module, m.position, m.content, m.showtitle, m.params, mm.menuid FROM p3sae_modules AS m LEFT JOIN p3sae_modules_menu AS mm ON mm.moduleid = m.id LEFT JOIN p3sae_extensions AS e ON e.element = m.module AND e.client_id = m.client_id
1 × SELECT SQL_CALC_FOUND_ROWS a.`id` AS key1, a.*, ifnull(f.`id`, 0) as `featured` FROM `p3sae_easyblog_post` AS a LEFT JOIN `p3sae_easyblog_featured` AS f ON a.`id` = f.`content_id` AND f.`type` = 'post'
1 × select a.*, b.`post_id` from `p3sae_easyblog_tag` as a inner join `p3sae_easyblog_post_tag` as b on a.`id` = b.`tag_id`
1 × SELECT a.* FROM `p3sae_easyblog_fields` AS a INNER JOIN `p3sae_easyblog_category_fields_groups` AS b ON a.`group_id`= b.`group_id`
1 × SELECT `group_id` FROM `p3sae_user_usergroup_map`
1 × SELECT COUNT(1) FROM (SELECT a.*, (count(b.id) - 1) AS `depth` FROM `p3sae_easyblog_comment` AS a INNER JOIN `p3sae_easyblog_comment` AS b LEFT JOIN `p3sae_users` AS c ON a.`created_by` = c.`id`
1 × SELECT `group_id` FROM `p3sae_easyblog_category_fields_groups`
1 × SELECT COUNT(1) as `voted`, `uid` FROM `p3sae_easyblog_ratings`
1 × SELECT `source`,`keepurlparams` FROM `p3sae_admintools_redirects`
1 × SELECT * FROM `p3sae_admintools_ipautoban`
1 × SELECT m.id, m.menutype, m.title, m.alias, m.note, m.path AS route, m.link, m.type, m.level, m.language,m.browserNav, m.access, m.params, m.home, m.img, m.template_style_id, m.component_id, m.parent_id,e.element as component FROM p3sae_menu AS m LEFT JOIN p3sae_extensions AS e ON m.component_id = e.extension_id
1 × SELECT * FROM p3sae_easyblog_configs
1 × SELECT * FROM `p3sae_easyblog_acl`
1 × SELECT `value` FROM `p3sae_admintools_storage`
1 × SELECT `query` FROM `p3sae_admintools_wafexceptions`
1 × SELECT `session_id` FROM `p3sae_session`
1 × SELECT b.id FROM p3sae_usergroups AS a LEFT JOIN p3sae_usergroups AS b ON b.lft <= a.lft AND b.rgt >= a.rgt
1 × SELECT id, rules FROM `p3sae_viewlevels
1 × SELECT folder AS type, element AS name, params FROM p3sae_extensions
1 × SELECT * FROM p3sae_languages
1 × SELECT id, home, template, s.params FROM p3sae_template_styles as s LEFT JOIN p3sae_extensions as e ON e.element=s.template AND e.type='template' AND e.client_id=s.client_id
1 × SELECT `data` FROM `p3sae_session`
1 × SELECT b.rules FROM p3sae_assets AS a LEFT JOIN p3sae_assets AS b ON b.lft <= a.lft AND b.rgt >= a.rgt
1 × SELECT AVG(`value`) AS `ratings` ,COUNT(1) AS `total` ,`uid` FROM `p3sae_easyblog_ratings` AS a
1 × SELECT a.* FROM `p3sae_easyblog_comment` AS a
1 × SELECT a.`post_id`, COUNT(1) AS `count` FROM `p3sae_easyblog_comment` AS a
1 × SELECT a.rules FROM p3sae_assets AS a
1 × SELECT * FROM `p3sae_menu`
1 × SELECT `id` FROM `p3sae_easyblog_mailq`
1 × SELECT * FROM `p3sae_easyblog_post`
1 × SELECT id, created_by FROM`p3sae_easyblog_post`
1 × SELECT * FROM `p3sae_easyblog_uploader_tmp`
1 × select a.*, b.`post_id`, b.`primary` from `p3sae_easyblog_category` as a inner join `p3sae_easyblog_post_category` as b on a.`id` = b.`category_id`

OTHER Tables:

1 × SHOW FULL COLUMNS FROM `p3sae_users
1 × UPDATE p3sae_easyblog_post SET `hits` = (`hits` + 1)
1 × UPDATE `p3sae_session` SET `data` = 'joomla|s:1448:\"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\";' , `time` = '1713558687'
1 × SHOW FULL COLUMNS FROM `p3sae_assets
1 × delete a, b from `p3sae_easyblog_post` as a inner join `p3sae_easyblog_revisions` as b on a.`id` = b.`post_id`
1 × INSERT INTO `p3sae_session` (`session_id`, `client_id`, `time`) VALUES ('5ccb65d1a736abbdad13b0272a4bc76e', 0, '1713558687'
1 × DELETE FROM `p3sae_easyblog_mailq`
1 × DELETE FROM `p3sae_session`

Infradapt Blog

Russian “Sandworm” Hack Reveals 5-Year Cyber Espionage Campaign

About the author

John Reilly

Author's recent posts

Comments

Joomla! Debug Console

Session

Profile Information

Memory Usage

Database Queries

170 Queries Logged

66 Query Types Logged, Sorted by Occurrences.

SELECT Tables:

OTHER Tables: