vb.org Archive - forum users hacked

Page 1 of 2

Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)

- - forum users hacked (https://vborg.vbsupport.ru/showthread.php?t=329473)

amine13420

01-18-2023 11:49 AM

forum users hacked

hi,

i'm having trouble with my forum using vbulletin 3.8.11

since yesterday every hour i'm having some post of spam sending link for a website who have malicous infection,

the users said me that they never clicked on these link, and when i checked ip adress from post with spam and ip adress from users are different, it mean that hacker have password and using the account to send malicious link,

i don't know if there is any patch for this version ?

i'm ready to pay for any dedicated help

thank's

KFrancesco

01-20-2023 07:10 AM

Hi,
I have the same problem, any news?

Thank's

z3r0	01-20-2023 08:35 AM

It's happening to all forum software and comment systems; it looks like somebody has a bot that is using details from data breaches to log into member accounts and post spam.

It's only been coming from a few IP addresses so far, so has been easy to block.

Kaelon

01-26-2023 04:48 PM

Considering the number of boards still using vBulletin 3.8.x, I would be surprised if someone doesn't identify the breach and provide a patch soon enough. Any updates from vBulletin Staff on this?

Phillip

01-27-2023 09:26 AM

Considering all of 3.8.x software is outdated and is no longer supported I would say, that's the problem.

z3r0	01-27-2023 01:42 PM

Quote:

Originally Posted by Kaelon (Post 5428)

Considering the number of boards still using vBulletin 3.8.x, I would be surprised if someone doesn't identify the breach and provide a patch soon enough. Any updates from vBulletin Staff on this?

There is no breach, it's a bot using hacked credentials on all forum and comments software be it vb3/4/5, Xenforo, Wordpress, IPB etc

amine13420

02-06-2023 08:20 AM

we really need help from official devloper to make us a patch.

Dead Eddie

02-06-2023 10:38 AM

There's nothing to patch. The software wasn't hacked. The spammers have your users username/password from a breach of a different software.

Also, there's no official developers -- Vbulletin 3.X isn't getting anymore patches.

amine13420

02-06-2023 11:54 AM

we need a solution for this spammers ...

some pluggins or mods ....

z3r0	02-06-2023 01:00 PM

So far I've only seen it from 3 different IP's, just block the spammers IP for now.

All times are GMT. The time now is 10:49 PM.

Page 1 of 2

Show 40 post(s) from this thread on one page

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.00940 seconds Memory Usage 1,727KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)pagenav (1)pagenav_curpage (1)pagenav_pagelink (1)post_thanks_navbar_search (1)printthread (10)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start pagenav_page pagenav_complete bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: