Jump to content
Ancient Clan
  • entries
    96
  • comments
    103
  • views
    98,928

vBulletin strikes again.. PC Gamer Forums

Sledgstone

3,683 views

I haven't liked vBulletin for some time now and mostly put that forum software behind me except for the occasional jab about how bad their software is. I came across this interesting update from PC Gamer the other day... with a part that I emphasized:

http://www.pcgamer.com/2013/07/26/why-forums-and-comments-are-still-offline/

Quote

Why forums and comments are still offline

You may have noticed that the forums and comments have been switched off for the past few days. On Friday 19th July one of our trusted moderators reported suspicious activity within the forums. They had discovered what appeared to be a script hidden in a forum announcement post. The script had been designed to steal users’ details (including password and date of birth) when clicked.

As a precaution our IT security team took immediate steps to close the forum to block the attack and fully investigate the extent of the intrusion. At this point we became aware that a small group of admins and moderators had their accounts compromised, the first of which had been used to post the malicious script.

It’s important to note that at this point our IT security team’s investigation has revealed that no other user data has been compromised, but it’s taken a few days to precisely pinpoint the problem so we can start plugging it and get everything back up and running. Apologies for the down-time; we’re being super-careful to ensure that the issue’s totally squashed before bringing things back online. All other site functionality that required user login will also remain inaccessible for the time being including new sign-ups to Gamer Rank.

There’s good news for fans of heated debate and occasional cat jokes, though. An interim solution will go live shortly that’ll bring back comments on article posts, so discussion can return to PCGamer.com. Praise the sun. It’s been spookily quiet around here.

The forum will take a little longer to return – especially as we will be reviewing our choice of forum software – but rest assured, we have our finest site surgeons on the case. We’ll let you know as soon as everything’s clear. Thanks again for your patience. We hope to get everything ship-shape as soon as possible so that normal service can resume.

For the official corporate line read below:

On Friday July 19th we were alerted to suspicious activity on PC Gamer forums by one of our moderators. This involved the posting of a malicious script into a forum post which, if clicked, could have stolen a user’s username, password and date of birth.

We took immediate action by closing down the PC Gamer forums and disabling user login. As a preventive measure we also closed all other forums within the Future network which use the same forum software, vBulletin.

Subsequent investigations into the extent of the intrusion on PCGamer have revealed the following:

- A small number of admin and moderator level passwords have been compromised. These were immediately dealt with on Friday July 19th.

- There is no indication in our logs which suggest any other user’s data has been compromised.

In light of this we are now investigating whether any of our other forums have been compromised using a similar exploit although we must stress at this point there is nothing to suggest any of other forums beyond PCGamer were targeted.

We will also be using this investigation period to review our choice of forum software to ensure chances of future attacks are as low as is possible.

Please visit the host site of your forum for any further information on the resuming of forum service.

We apologise sincerely for any inconvenience this outage is causing.

http://mos.futurenet.com/forum/

Quote

Important security update about Future forums

PC Gamer

Last week on the 19th July 2013 we discovered that PC Gamer's vBulletin-powered forum had been the target of a malicious attack. Immediate action was taken to shut the forum which blocked the attack and we have since been thoroughly investigating the damage done and how this attack took place.

We have no evidence that any of the PC Gamer's users' details were stolen. However we feel it is safest to keep the forum closed until we are satisfied that the security vulnerability in the software is fixed. Information on the progress of this will be communicated via the PCGamer site.

Other Future Forums

If you are seeing this message it is because this vBulletin forum has been closed as a precautionary measure. We have no evidence this forum has been compromised, however we are investigating each forum in our network individually to be sure this is the case.

The website teams will be in touch with more information on the progress of this as soon as it becomes available.

We are truly sorry for any inconvenience caused, we take our user's security very seriously and we appreciate your patience.

I don't visit PC Gamer's website, so I'm not certain what version of vB they were using, but this is pretty huge. The took all of their entire network's vBulletin powered forums offline because it was exploited.

Well PC Gamer, I suggest you switch to Invision Power.

vBulletin has really gone downhill and I'm glad we stopped using their software when we did.



4 Comments


Recommended Comments

UBB 4-LIFE XD

Thats pretty shitty though. vB use to be a great product. We had some good times under that format. Heck the Station Syndicate project ran under it and SS Radio was a blast to mess with.

Share this comment


Link to comment
Guest
Add a comment...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



  • Recent Status Updates

    • DeathscytheX

      Cop Craft is the most underrated, under the radar series this past season. Its not some masterpiece for the ages, but damn it was a ride from start to finish. If you liked BRIGHT on Netflix, this is pretty much the anime long form of it. Action, Gore, and a splash of dry humor, packed into 12 eps is worth a watch. It will probably never get a seconds season, and thats ok. If you have 6 hours to blow, it's worth a binge.
      Imma share this again because the OP is so late 90s. I just love it. One of those few I never skipped.
       
      · 0 replies
    • Sledgstone

      My computer had a heart attack yesterday morning. The freezing and rebooting that started almost a month ago from a windows update got so bad I couldn't work on the PC for longer than 15 minutes before it'd freeze again and reboot. So I set it to do a "reset" through the recovery option.. which uninstalled all my stuff but kept my personal files. Took almost 5 hours. and in the end, it froze again once yesterday and again this morning. wtf. I did a memory test and its all good. I'm about to do a full clean install but I'll have to move all my files off first. wtf. Even now I have to re-install everything, Guild Wars 2, etc.
      · 6 replies
    • Sledgstone

      I've been working on my gutters off and on for the last 3 weeks now. I hate these f*cking things. It wouldn't have been making repairs to these if the previous owners didn't redneck the hell out of them. I'm ten feet up in the air two days ago taking a broken piece off, only to find a hidden stripped screw thats impossible to take off, so then I have to break a piece off and my repair work looks like crap because of it.  It'll work, unlike what was there before, but I'm not pleased with it. When I can afford it I'll pay some company to come out and replace all the gutters.
      · 5 replies
    • DeathscytheX

      It's been a long time since I've been duped hard by Netflix. I started watching Kabaneri of the Iron Fortress: The Battle of Unato last night. It said Season 1, and the preview looked awesome. I was getting really into the story, the animation was stunning, the action and music were amazing... and then it ended after episode 3. Turns out it was a movie they divided up into 3 eps. WTF. Amazon has the actual series but its subbed. I guess I'll watch it one day.
      · 2 replies
    • Sledgstone

      Now I understand why the last Lord of the Rings movie had such a long endless ending.. I'm halfway through the last book, the ring is already destroyed, the war is won and everyone is celebrating at the castle.. theres still like 300 pages left. wtf.  and one of the biggest differences from the book and the movie was the last stretch of Frodo and Sam's journey. In the movie, they fought Shelob the spider and after Sam killed a couple Orcs and saved Frodo, they  took some more paths and were at the the lava in Mt Doom.. in the book, Sam had to infiltrate a massive Orc base, most of the Orcs killed each other in an argument, save Frodo.. and then had to actually go to Mt Doom still because that was only the first mountain. wtf. They had an extra week of traveling through enemy controlled land, sneak past multiple Orc bases and encampments, dress up as orcs and had to blend in with an Orc march to get over a bridge, get to Mount Doom, climb it.. lmao. the movie could have been so much longer.
      · 2 replies
  • Topics

×
×
  • Create New...