Not sure if this is the right place to post this,But I need some help.Someone is hacking in to my website.A couple days ago I got on my website and the entire home page had been changed.On the home page was a message that said you have been hacked by powersurge.
Then today someone posted in my chat box that my website was gonna be moving to power surge.The weird part is ,it said it was posted by the main admin account on my website.I changed my passwords right away.I restored my website through my host account.Every thing seems to be fine,but how was someone able to hack my website and how do I stop it from happening again.Thanks

Could be many reasons, security on your server, chmod incorrectly of certain files, insecure mods, there are more obvious ones

I would right at this time disable your mods via your config.php and .htaccess your mod cp & admincp to just your IP address.
Without logs or more information I'm not sure what else anyone can do for you.

Oh and back up daily ............. or in your case right now back up hourly :P

Yes, p0wersurge, claim they can hack any vBulletin forum, and that is really more of a, they can, over a claim

They hacked one huge site, which in a way was good as it was a site for nulled scripts, vbteam was the name, they also tried to take down another huge nulled site called, forumscriptz, but they got their server down quickly as they saw vbteam getting hacked.
The outcome of the above was good for IB and vBulletin, as they are now both off line and won't be coming back.

The people who did this to your forum are here:
http://www.p0wersurge.com/forums/forum.php
https://twitter.com/p0wersurge

All vbulletin customers should be aware their Forums are not safe from these hackers, they are the best around at the present time.

As said above, keep backups of everything, and keep an eye on what is happening on your forum.

They just recently hacked me,could this be because of a mod I recently added.I dont understand why they would want to hack my forum.I only have like 500 members and its a gaming website.Thanks for the info.

It's not a case as why, it's more of 'they can' so they do.
All about the vbulletin stuff can be found in this section
http://www.p0wersurge.com/forums/forumdisplay.php?f=201

No point in the link joe can't see any posts unless you register

I just registered so I could read the Threads, really easy to do;)

Not going to register on a hacking site

Use a proxi or vps and make a new e mail account just for that site only.
Really interesting how they can hack vbulletin sites, lots if information within the Threads there.

All vbulletin customers should be aware their Forums are not safe from these hackers, they are the best around at the present time.


I don't buy the "can hack any forum" thing. It doesn't matter how good a hacker is, they still need to find a mistake to exploit. It's always possible there is a hole in vbulletin that isn't publicly known, but I think it's more likely that they go looking for known security issues that haven't been repaired.

I totally understand where you are coming from kh99, but these guys are at the present the best around.
They have many Threads which give information on such things as you mention, and I do think myself that they could hack any vbulletin forum they wanted to.

They're getting very well known around the inner circle too.
Maybe pass on this info to your guys to check out too.

I think i might have a look at their site,thanks for the info.

--------------- Added 1346775858 at 1346775858 ---------------

I just got an email from vbulletin saying that There is possible security exploit in yet another award system mod.I have that mod so I will disable it and see if that helps.Thanks again

I totally understand where you are coming from kh99, but these guys are at the present the best around.

Yeah, hackers like to go on about how good they are. If you could hack any forum at will there would be no reason to only hack a few random sites. But that's exactly what you'd do if you were searching for specific vulnerabilities.

FTG take a look at this thread, https://www.vbulletin.com/forum/showthread.php/393227-Preventative-How-to-avoid-being-Hacked-by-TeamPS-i-e-p0wersurge

Thank you john,that should help.