vb.org Archive
Page 1 of 4 1 23 Last »
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   Community Lounge (https://vborg.vbsupport.ru/forumdisplay.php?f=13)
-   -   Vbulletin.com hacked (https://vborg.vbsupport.ru/showthread.php?t=320673)

shimei 10-31-2015 06:20 PM
Vbulletin.com hacked
 
For us VB5 owners.... I hope they fill us in when they have it figured out.

https://vborg.vbsupport.ru/external/2015/10/1.jpg

TheLastSuperman 10-31-2015 06:21 PM
I just noticed as well, apparently Cold had Zero things to do on a Saturday, I'd hate to be so lonely myself! :p

shimei 10-31-2015 06:27 PM
Had a guy come onto my site yesterday. He claimed to be using a program that could create registered accounts, and used some 200 proxies. I believe he referred to it as xrumer profiles. Supposedly he creates hacks and sells them.

Of course the only thing I could do was to manually moderate new accounts. He created another account near instantaneous.

bridge2heyday 10-31-2015 06:28 PM
This is Very Bad , I think it will have a big effect on vbulletin

TheLastSuperman 10-31-2015 06:32 PM
You can still access the members area via https://members.vbulletin.com

It appears to have only been the forums, the main home page and all subsequently related pages work along with the members area as well.

If your vB5 forum is hacked, close the board and await an announcement and new security patch because currently since we (the public) do not know the exploit used, overwriting with fresh files from a version with an apparent exploit won't be of much use.

*Although to be fair this could have been some other form of exploit... server possibly however I doubt that based on it only being the vB5 powered forums down currently - we honestly do not know yet :(. *This may also be something that affected the specific version on vbulletin.com, meaning that usually they run a slightly newer version than what is currently released so it's entirely possible only their version was compromised and no others are at risk however that's dependent on a number of factors.

Is it bad? Well sure no one likes being defaced that way but let's not start a panic and have chaos ensue in this thread, we'll know more soon :cool:.

Dave 10-31-2015 06:40 PM
Now the question is if it got hacked because of a vBulletin 5 exploit or something else. Looking at the amount of vBulletin 5 vulnerabilities in the past, it does not surprise me if it's a vBulletin 5 exploit.

bridge2heyday 10-31-2015 06:43 PM
The hacker in his Facebook page says he lost control , He claims he could control the site for 1 minute only .

napy8gen 10-31-2015 06:45 PM
How many times vbulletin.com hacked since 2001 and what version?

TheLastSuperman 10-31-2015 06:50 PM
Quote:
Originally Posted by Dave (Post 2558042)
Now the question is if it got hacked because of a vBulletin 5 exploit or something else. Looking at the amount of vBulletin 5 vulnerabilities in the past, it does not surprise me if it's a vBulletin 5 exploit.
LOL I was editing my post rewording it with something along those lines before I saw your post :p.

Quote:
Originally Posted by bridge2heyday (Post 2558043)
The hacker in his Facebook page says he lost control , He claims he could control the site for 1 minute only .
More than likely due to all the security they have in place to prevent things like this from occurring. Why are you on his facebook page? Silly to even bother visiting it imo, trash all looks the same.

Quote:
Originally Posted by napy8gen (Post 2558044)
How many times vbulletin.com hacked since 2001 and what version?
I only know of one other time, I barely recall another time before that but can't say for sure. I know the p0wetards... err I mean p0wersurge folks were able to pull it off a while back. I can only vouch for twice myself.

Max Taxable 10-31-2015 07:01 PM
Quote:
Originally Posted by shimei (Post 2558038)
Had a guy come onto my site yesterday. He claimed to be using a program that could create registered accounts, and used some 200 proxies. I believe he referred to it as xrumer profiles. Supposedly he creates hacks and sells them.

Of course the only thing I could do was to manually moderate new accounts. He created another account near instantaneous.
I laugh at XRumer. defeated long ago.


All times are GMT. The time now is 05:29 AM.
Page 1 of 4 1 23 Last »
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01172 seconds
  • Memory Usage 1,739KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (4)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (2)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete