Warning, be careful
 

My Skype was hacked by the piggy named vbstu from powersurge. Do not trust any messages from that account

Don't have you on skype. Can you not change the password and how you find out who hacked it

And how did it get hacked? I assume you either shared the password or use the same password at multiple sites/programs?

Password was hacked last year from vb.org. I changed it all over except I forgot to do it on Skype. He had contacted me before with a stolen script from Dbtech he wanted me to convert for 4.2.0. When I ignored him he took over my skype and changed password. Unforunately a customer had his site access on it and the piglet destroyed the site. When you do a view source you see the punk signature p0wersurge. He also tried to contact some legitimate customers of mine.

He is a member from here? And I never knew your account on here was hacked, how many others accounts on here where hacked

I was contacted as well along with a current staff member from vb.com not too long ago. Its not details from vb.org, its actual details from vb.com database when it was compromised (imo). When they contacted me, they pasted my 1) Password at the time the site was hacked 2) Answer to my security question on vb.com 3) My Customer Number and all associated license numbers. I'm not personally aware of vb.org storing our security answer from vb.com database, so this is why I assumed when contacted that it came from vb.com database and not the vb.org db or tables if sharing a db etc.

So its scary yes, but this is also why it was stated long ago for you to change your passwords to those pertinent areas i.e. members area and such.

*The key thing to remember about skype is that, simply accepting friend/contact requests will not have your skype account hacked... accepting attachments and downloads from said people can though so ** DO NOT ACCEPT anything not even a file or click on a link they sent you IF you do not know them **.

I'd imagine Lionel that your skype account had the same if not very very similar password to one of the compromised accounts, I had changed all my passwords long ago even before they contacted me but I forgot one, as I prefer facebook over twitter and rarely login there I forgot to change my twitter account password - it was the same used on vb.com back (I rarely use the same password but when I did twitter I did a quick and crude run-through on new acct etc) then and about 2 months back a email notification from twitter about unauthorized [S]logins[/S] tweets so they locked my account - I promptly requested a new password and sorted that issue.

Needless to say, you all be careful and don't click on links, accept anything incuding attachments from people you don't know OR just literally added on skype. If dealing with a hacker, I don't care who they're, what they want from you or what DB Tech or any other companies mods they try to attach and send you - DO NOT ACCEPT.

Edit: If you have accepted any files in situations like this - Stop what you're doing and promptly google how to do a BOOT-TIME scan using your current anti-virus software, do whatever steps it takes to get that scan going and be patient. The reason why I say this is viruses and malicious programs can be transmitted via those files you just casually accepted and a program could literally be running on your pc now doing whatever it was designed to do - and no its not anything good.

Never knew vb got hacked

That's a guess on my part. The reason why I suspect that is, why would the vb.org db have all that info within? License Number for license verification perhaps but not all of that... my security question answer and all that? My password to vb.com from that time as well? Now way imo.

I remember seeing comments back then about a test server database being hacked, that may be the case I'm just not sure why those type of details would have remained in a test instance to begin with honestly.

Edit: I find it laughable that they continue to parade and gallivant around posting threads in BOTM and such wanting to be "seen" and "acknowledged" yet the only way that ever happens is by making complete fools out of themselves rofl :p.

yes he is a member here. And he had the guts to post a link to his site in the November BOTM. Last year I posted about being hacked and if my memory is good someone else had that issue.

What I do not get is the fact that vb.org is letting the link to that hacking site display for all members to see

Leave it up, I basically discredit them in the post below it so anyone whos anyone or no one at all should be able to read and get the gist of the situation i.e. they're ftards and nothing more. What's funny is they "hid" that hacking/null forum via permissions to try and get into BOTM, was insulting to say the least.

yes it was same password which I changed but forgot to do so on Skype.

You removed the link to hacking site on your post but not his

I thought that might be the case, sadly for me I never changed twitter but thank goodness after two bogus tweets twitter locked the account. Edit: Stop for a few minutes... any other sites or software you need to change the password on? Think hard and make sure because if not since you're now their joke of the day, they'll be trying that password elsewhere as well.

I feel for you my friend, I surely do :(.

*I sure did, I won't post links to that site, he posted the link. Like I said before - I discredited them via the quote - if anyone follows the link then its because they're not a stand-up type of person to begin with.

He sent the file but I never opened it, knowing that was stolen from DB Tech

But you accepted it i.e. initiated the transfer via clicking on the button to do so? No matter I would run the scan. I'd hate to see you change passwords (in worst case scenario) to everywhere then a week later to only see yet another account hacked because something existed on your pc giving them access to your daily activities and such.

Basically run the scan on the premise of "Better Safe Than Sorry" and even more so since you're like me and provide services, its not just your pc and details at risk its your clients as well - I've been down upwards of 72 hours before running scans and such to be sure i.e. just in case, like I said better to be safe than sorry and that also ensures your clients pertinent info is kept safe as well :cool:.

*Consider using Basecamp or similar for project access and details to be shared in, via email or skype is not advised.

Thanks. I deleted file but will scan PC

*Remember, needs to be boot-time scan if at all possible. Many malicious programs and such do not start working until the pc starts up. By scanning before this happens OR via a safe mode scan you're able to see it "dormant". Do the safe mode scan if boot-time is not offered via your anti-virus program because only a few very complex viruses and such can even run in safe mode - not many can so by running a boot-time or safe-mode scan your anti-virus can properly identify the virus and stop/remove it properly since it never "started up" per say i.e. the virus didn't have time to start and mask itself as something else.

Edit:

1. Click Start
2. In Search Box type "msconfig"
3. Now a new window comes up "System Configuration" w/ some tabs
4. Click on "Boot" tab
5. Under "Boot Options" in the Boot Tab click on "Safe Boot" then select "Minimal"
6. Click Apply
7. Restart if prompted else close the dialog box and now restart.

^ When the pc restarts its now in safe mode, bring up your anti-virus and run a scan - some anti-virus programs will not work in safe mode where as many have the DOS style black box only in safe mode.

am installing avast

Only thing about that is, many do not realize that if you're already infected with something - it can possibly infect any new software you install too.

If you have anything installed already, do the boot-time or safe-mode scan now before installing any new anti-virus. If you're stuff was old or not the best then you can install new but you were before warned that it could be compromised.

I know, I know - this is when it gets finicky but remember this is just to be safe - neither of us know yet if anything is even on your pc its just a matter of being cautious to find out now instead of later. I'd say probably not but I never clicked to download anything from them and I imagine they chatted with you like they started with me i.e. they were being pompous pricks and hinting about hacking your site or "what if you're site was hacked", didn't last long with me I just started blabbling nothing but pure bs to them and like morons they bought half of it - needless to say you fight fire with fire so if dealing with morons just act like one in return and it all works out to one giant laugh!

ok, will listen to you

Use this antivirus http://www.eset.com/us/home/products/smart-security it is the best one around I recommend smart security one here is a free trail if you want to try first

Just boot in safe mode and run a full system scan of Malwarebytes. That's one of the best ways to find and get rid of infections.

Been running the one I posted above for 10 years and have never had anything it stops everything 100%

Yeah that is if you have it loaded, and running before you get hit. If you install it after the fact, it might not catch everything. That is why you need to do it in boot-time or safe-mode. :)

Also you guys can run combofix as well if you are not windows8.

When I installed it, I done it from a USB stick and before my laptop was connected to the internet this was when I got it new so there was no chance I got anything. And when you install it for the first time it does a first scan and if there was something there it would find it. I have never needed to format any of my laptops or desktop in the 10+ years I have had this installed

I understand that, but that may not be the issue with Lionel's comp. As he might have been compromised already.

Yes, that could be the case with his computer

I doubt it was. Anyway i am still scanniing 2 terabytes So i am using my iphone now

--------------- Added [DATE]1416109873[/DATE] at [TIME]1416109873[/TIME] ---------------

Had to reboot. Anyway playing safe. Tomorrow am getting a new PC

Erm cleaning should suffice, if anything take it to a local pc shop afterwards and ask how much for them to scan and confirm its clean etc.

Not entirely sure what you mean here, but vb.org does not have any licence information, and never has, its all stored in a vb.com licensing system.

I mentioned being contacted via skype, also that I wasn't sure if the vb.org db had all that info within it - when I said:
I meant that vb.com was hacked more so than vb.org in my opinion, if ever at all due to how many vBulletin customers who have public info about them i.e. businessmen or similar are being contacted via skype and exploited, threatened, and harassed.

Force then replied with:
So I replied saying it was a guess (if you just said vb.org does not store it therefor it basically accesses the license info to verify if a customer is licensed and can participate on this site):
And here we are now:
So to sum it up, vBulletin.com database was either directly hacked OR whomever cloned the main DB to make a test server DB left all the pertinent info within said test DB which was not a good thing to do, in the case the test server was hacked which I mentioned prior in this thread remembering seeing someone from vb.com staff post regarding that being the case - case in point all that "pertinent" info is now the hackers and if it was hashed or protected in any way then its surely not now, myself, Zachery, Lionel and others have all been contacted via skype by them and had our passwords from vb.com at the time it was supposedly hacked shown to us via skype directly hence, not hashed/hidden anymore - Being contacted is not something you want to be bothered with or inconvenienced by in the least. I'm not trying to stir up a fuss about this however I just had to comment and let Lionel know they've done this to others because I've known him for quite a while and I just knew they tried some similar BS that they did with myself, Zachery, and a few others including Lionel now.

This is happening again or is this from last year?

Still from the last time. :)

It is supposed forum passwords can't be decoded...well..that's what vbulletin says so how he could get the passwords?

vbulletin has never said that.

(unless you really want to be pedantic).

Technically you cannot decode them, but if you have access to information from the database, you can brute force them until you get a hit.

^ Rainbow Cracking is one such method.

Lionel, I see you browsing the thread - everything work out ok for you sir?

Yeah it would be interesting to know what machine you decided to go with. :)

I changed my PC but I did loose customer. He had 6 sites on server. The past 5 months that account was paying me 1200.00 a week, work or no work, just to be there on request. I suppose he got upset. I saw that piggy posted a job request. He probably is looking for another victim. Eventually someone will chop his hands

Why did the customer get upset?

His 6 sites got destroyed. Luckily other server was IP protected and I never worked on third server which is a 70 millions / year site

The punk had redirected all sites with some stupid cartoon stating: Blame Lionel, all his customers are being hacked.