Forum hacked :(

[shibby2]

Is there any known security issues with 3.8.4? My forum was hacked this morning, and I just wish I knew how.

Thanks for any help.

[borbole]

Quote:

Originally Posted by shibby2

Is there any known security issues with 3.8.4? My forum was hacked this morning, and I just wish I knew how.

Thanks for any help.

Ask your host to check their access logs. That will them what exactly went down.

[BirdOPrey5]

There were 2 security patches of 3.8.4, but if you were running 3.8.4 PL2 the forum itself was likely safe... if you were really running 3.8.4 with no patches you were vulnerable.

[shibby2]

How do I know if I am running PL2?

I restored from a backup, but now, a couple days later, they have hacked into it again. WTF?

[maxie]

change your databse password
change you admin login password
change your server password
user the generator password and keep it in same please. http://strongpasswordgenerator.com/

check your system for some robot aplication install. may be they install robot to your system thats why all your personal password has recorded.

don't use keyloger to your system.. or try to setup your data base for your personal PC or another PC, if you dont have extra pc, reformat your PC and install your databse again to sure that no tpboot on your system. so that no body know what you are doing to your site

[borbole]

Quote:

Originally Posted by shibby2

How do I know if I am running PL2?

I restored from a backup, but now, a couple days later, they have hacked into it again. WTF?

Did you ask your host to check their access logs? You must find out the point of entry and patch up the hole otherwise you can restore your db backup all you want. The same thing will happen again and again.

[BirdOPrey5]

In your admin CP it should tell you what version you are running on top of each page...
It should say:
Admin Control Panel (vBulletin 3.8.4 Patch Level 2)

If there's no patch level listed then you're not running it.