Information Security News
mailing list archives
Hackers use zero-day vulnerability to breach vBulletin support forum
From: InfoSec News <alerts () infosecnews org>
Date: Tue, 19 Nov 2013 07:45:57 +0000 (UTC)
By Lucian Constantin
IDG News Service
November 18, 2013
A group of hackers claim to have exploited an undocumented vulnerability
in the vBulletin Internet forum software in order to break into the
MacRumors.com and vBulletin.com forums.
On Friday, vBulletin Solutions, the company behind the vBulletin software,
reset the passwords for all accounts on the vBulletin.com support forums
after confirming that hackers broke into its systems and stole customer
"Very recently, our security team discovered sophisticated attacks on our
network, involving the illegal access of forum user information, possibly
including your password," Wayne Luke, the technical support lead at
vBulletin Solutions, said in a message posted on the forum. "Our
investigation currently indicates that the attackers accessed customer IDs
and encrypted passwords on our systems."
Luke advised users to choose a new password that they're not using on any
Dean Bushmiller teaches a great 5-Day CISM in Albany NY Dec. 2 6.
Call 327-937-9786 for details.
- Hackers use zero-day vulnerability to breach vBulletin support forum InfoSec News (Nov 19)