vBulletin Hack Exposes 820,000 Accounts from 126 Forums

[Joeychgo]

A hacker going on Twitter by CrimeAgency claims to have hacked 126 forums running on vBulletin, stealing personal data belonging to forum admins and registered users, before leaking everything to an underground hacking forum.

The information was verified by breach notification platform Hacked-DB after they managed to scan the data.

Hack Read reports the attack was conducted between January and February 2017. The hacker managed to get his hands on 819,977 user accounts, including email addresses, hashed passwords, as well as 1681 unique IP addresses. Most of the accounts were linked to Gmail - over 219,000, followed by 121,000 Hotmail accounts and 108,000 Yahoo accounts.

More...

http://news.softpedia.com/news/vbulletin-hack-exposes-820-000-accounts-from-126-forums-513416.shtml

 

[Sal Collaziano]

Crazy. I learned very early on about keeping scripts up to date. Somebody managed to break into one of my vBulletin sites through an old script that I had running but didn't think much of. Not many people used it so I forgot about it and somebody snuck in. The guy downloaded and dropped my POST table in vBulletin but luckily I'm a very diplomatic person and got him to replace it and show me where my issue was...

 

[Gus]

Hopefully all the owners of all those affected accounts use different passwords for their email, etc. Events like this remind us to use unique & different passwords for every thing you sign up for.

 

[pierce]

ozzy47 are you ozzmods?

 

[ozzy47]

ozzy47 are you ozzmods?

Yes, and I know mine was hit, that's why the site is offline.

 

[Shin Ryoku]

Sorry to hear that. Hope ozzy47 and others affected have a quick and as painless as possible recovery from this!

I've been there, and it sucks

 

[ozzy47]

Sorry to hear that. Hope ozzy47 and others affected have a quick and as painless as possible recovery from this!

I've been there, and it sucks

It happens. I am probably just going to shut the site down anyway, no need to keep it open anymore.

 

[Shin Ryoku]

It happens. I am probably just going to shut the site down anyway, no need to keep it open anymore.

Why is that, because you have the content available here?

 

[ozzy47]

Why is that, because you have the content available here?

Sorta. Partly because I just don't want to deal with running it anymore, and partly because I have no access to a PC, only my phone, so no way to sort things on a timely manner.

 

[pierce]

Yes, and I know mine was hit, that's why the site is offline.

It's not nice to get targeted.

 

[Monkey Wrench]

All targeted forums are vB4?

 

[Starskull]

That sucks ozzy47 . May I ask why not access to a pc? I thought that was common in today's world. Anyway we could help?

 

[we_are_borg]

Sorta. Partly because I just don't want to deal with running it anymore, and partly because I have no access to a PC, only my phone, so no way to sort things on a timely manner.

Why not go for a raspberry pi3 install Linux on it monitor, keyboard and mouse and you are ready to go.

 

[HallofFamer]

The issues have been fixed on the latest versions of the software, but the exploit still works on forums that haven't bothered to update.

So what is the latest versions with this issue fixed? Is VB 3.8.9 or the latest VB 4 good enough? Or its only fixed on VB5?

 

[chown]

All targeted forums are vB4?

Most of the sites seem to be using vBulletin 4.2.2 or older.

vBulletin 4.2.3 has been around since 2015 and has received 2 security related patches since then, so I guess these 126 sites put off updating for too long.

The final version of vBulletin 4.2.4 was released today.

 

[ozzy47]

That sucks ozzy47 . May I ask why not access to a pc? I thought that was common in today's world. Anyway we could help?

My PC and laptop are dead, and I don't have the $ or time to deal with it. So I am stuck using my phone for awhile.

Why not go for a raspberry pi3 install Linux on it monitor, keyboard and mouse and you are ready to go.

Not really interested in doing much sitewise TBH.

 

[Starskull]

My PC and laptop are dead, and I don't have the $ or time to deal with it. So I am stuck using my phone for awhile.



Not really interested in doing much sitewise TBH.

Sounds to me like you are hanging up your coat...

 

[Alpha1]

I wonder how long it will take for the websites to get into:
https://haveibeenpwned.com/PwnedWebsites

 

[GTB]

Sorta. Partly because I just don't want to deal with running it anymore, and partly because I have no access to a PC, only my phone, so no way to sort things on a timely manner.

Don't know how u can use web all the time without a proper PC. My PSU died in PC a few days back and been using a tablet for now until I replace PSU this weekend. Terrible trying to use web on a tablet, never mind a phone

 

[ozzy47]

Don't know how u can use web all the time without a proper PC. My PSU died in PC a few days back and been using a tablet for now until I replace PSU this weekend. Terrible trying to use web on a tablet, never mind a phone

Yeah it's not that easy posting on a phone constantly, I don't know how people do it all day long on social media.