• entries
    96
  • comments
    103
  • views
    73,811

vBulletin.com has been hacked

Sledgstone

2,466 views

I received this email today:

Quote

This is an important message about your account.

We take your security and privacy very seriously. Very recently, our security team discovered sophisticated attacks on our network, involving the illegal access of forum user information, possibly including your password. Our investigation currently indicates that the attackers accessed customer IDs and encrypted passwords on our systems. We have taken the precaution of resetting your account password. We apologize for any inconvenience this has caused but felt that it was necessary to help protect you and your account.

To regain access to your account:

  1. Visit the vBulletin forums at http://www.vbulletin.com/settings/account
  2. Enter in your existing password followed by your new password, twice for confirmation.
  3. Save this page at the bottom.

Please choose a new password and do not use the same password you used with us previously. We also highly recommend that you chose a password that you are not using on any other sites.

If you have any additional questions or concerns, please feel free to contact our support team at http://www.vbulletin.com/go/techsupport or support@vbulletin.com.

Sincerely,

Wayne Luke,

vBulletin Lead Technical Support.

Helping You Build Better Communities,

After logging into vbulletin's site, I changed my password and checked out the client forums. vBulletin's software was compromised, again.

Earlier this year, PCGamers forum was hacked and then earlier in July, Ubuntu forums was hacked. And just the other day vbulletin.com, vbulletin.org and MacRumors were all hacked. All of the sites were running vbulletin software.

References:

http://blog.canonical.com/2013/07/30/ubuntu-forums-are-back-up-and-a-post-mortem/

http://www.macrumors.com/2013/11/12/macrumors-forums-security-leak/

https://www.facebook.com/inj3ct0rs/posts/611793255548704

http://www.vbulletin.com/forum/forum/vbulletin-announcements/vbulletin-announcements_aa/4007195-important-message-regarding-your-account

http://www.vbulletin.org/forum/showthread.php?t=304626

I'm glad we stopped using this software when we did. vbulletin.org runs vb 3 which is what we were running in the end before switching to Invision Power Board. If vb3 is now vulnerable, then all the numerous sites still using it are at risk. Anyone that has used the same password on all sites, should not use any password they have previously used on any vBulletin site.

The Ubuntu and MacRumors sites were hacked because a moderator account was broken into. The vBulletin.com and vBulletin.org sites have not stated how they were hacked into, nor do they have a fix for this exploit because it is "being looked into."




0 Comments


There are no comments to display.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now


  • Recent Status Updates

    • DeathscytheX

      I've owned 3 cars now. My first car was a 1993 Nissan Maxima. It had 110k miles on it and it served me well until 215k miles. An alternator and a break hose were the only major repairs I've ever had to have done on it. Then I got a 2004 Mazda3 which also served me well from 11k miles to 80k miles, a fuel purge sensor was the only major repair I ever had to do on it. I'd still have it if some kid didn't pull out in front of my and total it. With the insurance check I should have just put a nice down payment on a brand new car... but at the time I didn't want a car note so I got the only thing I could find... a 2004 Ford Mustang. It had less miles than my Mazda so I figured it was like I just had this car all along since it was the same year. Wrong, its been the biggest POS I've ever owned. I've had to have the power steering pump replaced twice, major exhaust work twice, serpentine belt, entire ABS system, read axle, front calipers, CV joint, motor fan, and the transmission that was put in to replace the already busted on they tried to sell the car with, is about to go out again... to top it all off the paint just started crumbling off the car and now its rusting. I bought it with 65k miles and now it has 116k miles. Now that my college loan is almost finally paid off, I'm looking to get a brand new Honda Civic or VW Golf. The Civic is a car I've always wanted since wanting a car, but the Golf is very nice and has more horsepower. I'll never buy another ford car again. I remember when my exhaust system basically fell off the car because the manifold cracked... the muffler shop I went to basically said "Yeah this is pretty common at 90k miles for this car" which I was pretty much at... wtf. Screw Ford. I've never had so many catastrophic failures with a vehicle.
      · 2 replies
    • Sledgstone

      I'm sick of winter. This crap needs to end. Another day of driving on snow/ice covered roads in zero degree temps that are so cold the rock salt wont melt anything. Its like every road is made of gravel and my car is bouncing all over the place. At least the tall hill roads are getting treated with strong as hell rock salt of a different blend to ensure melting and to prevent accidents. But all other streets are complete ass to drive on.
      · 0 replies
    • DeathscytheX

      Tried the Monster Hunter Wold beta after the guys I played Destiny with kept hyping it up... eh. Its not for me. The controls are funky, and the explanation of what I was suppose to be doing wasn't very good. I just beat down a monster until it died? I thought I was suppose to be capturing it? I was expecting a finishing move prompt, or a QTE, for a death blow, but it just seemed anti-climatic. Then it sent me to the "Coming Jan 2018, would you like to Pre-Order?" in which I said no and got sent back to the main menu. At this point I knew I wasn't going to try the more difficult quests if I have to go through all that each time, rather staying in the game world and picking another quest that way. I never played a Monster Hunter game before, I always thought they looked neat, but playing it myself left me uninspired.
      · 4 replies
    • DeathscytheX

      BoTW took Game of the Year award and its well deserved, but I'm also glad NieR: Automata got best musical score, because its very well deserved.
      · 2 replies
    • Sledgstone

      Bestbuy and Amazon had some good deals on movies yesterday. Got 9 recent releases on blu ray for about $50. And I got a 4tb western digital external hard drive from bestbuy for $79.
      · 2 replies
  • Topics