We've been there.
The hackening returned last night, requiring a revert to the last day. The issue doesn' seem to be with us though, even the company creating Vbulletin itself got hacked, but currently still claims that there are no issues with its software. This remains to be seen. For collecting security information it is likely best if we keep the forum running so I can continue monitoring matters. Another possible vector that might have caused this latest hack, should the Vbulletin crew speak the truth, could be that the old, compromised, forum still remained on the server, although it was completely inaccessible. Maybe the hackers somehow used it to gain access and compromise this new forum as well. The old forum has since been removed from the server, leaving only the latest version of the forum software which is claimed to have no exploits. If we get hacked again it means that it clearly is hackable and in that case I can forward the information to the software company so they can hopefully use that information to fix the exploit that could target thousands of sites like the latest exploit to which we fell victim.
For now, I ask you to immediately report any strange behavior on the site to me or another admin/mod on either the forum, if you still can, or on IRC. Also keep copies of your post for the next few days as we hit the waves of uncertainty again.
As always, thanks for flying Europe.
The hackening returned last night, requiring a revert to the last day. The issue doesn' seem to be with us though, even the company creating Vbulletin itself got hacked, but currently still claims that there are no issues with its software. This remains to be seen. For collecting security information it is likely best if we keep the forum running so I can continue monitoring matters. Another possible vector that might have caused this latest hack, should the Vbulletin crew speak the truth, could be that the old, compromised, forum still remained on the server, although it was completely inaccessible. Maybe the hackers somehow used it to gain access and compromise this new forum as well. The old forum has since been removed from the server, leaving only the latest version of the forum software which is claimed to have no exploits. If we get hacked again it means that it clearly is hackable and in that case I can forward the information to the software company so they can hopefully use that information to fix the exploit that could target thousands of sites like the latest exploit to which we fell victim.
For now, I ask you to immediately report any strange behavior on the site to me or another admin/mod on either the forum, if you still can, or on IRC. Also keep copies of your post for the next few days as we hit the waves of uncertainty again.
As always, thanks for flying Europe.