vBulletin vulnerability?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • vBulletin vulnerability?

    I noticed this:

    http://krebsonsecurity.com/2013/10/t...bulletin-hole/

    I think ChessTalk and the CFC forum use affected version of vBulletin...
    ...Mike Pence: the Lord of the fly.

  • #2
    Re: vBulletin vulnerability?

    Yes the CFC site was already defaced and cleaned up over a month ago.

    If I were Larry I'd be worried about this though. http://www.chesstalk.info/forum/memb...?10557-hello22

    The fact that CT wasn't defaced as the CFC site was implies to me that they are trying to harvest data or put out malware.
    Christopher Mallon
    FIDE Arbiter

    Comment


    • #3
      Re: vBulletin vulnerability?

      An unauthorized admin account? Yikes.
      Dogs will bark, but the caravan of chess moves on.

      Comment


      • #4
        Re: vBulletin vulnerability?

        Originally posted by Nigel Hanrahan View Post
        An unauthorized admin account? Yikes.
        Yes, and it seems to have been created right around the time I started getting a lot more spam, so they probably harvested the email address list at the very least. It's specifically coming to the email address I used to register here.
        Christopher Mallon
        FIDE Arbiter

        Comment


        • #5
          Re: vBulletin vulnerability?

          Still not fixed is scary.
          Christopher Mallon
          FIDE Arbiter

          Comment


          • #6
            Re: vBulletin vulnerability?

            Originally posted by Christopher Mallon View Post
            Still not fixed is scary.
            Halloween scares me so I don't go out trick or treating. :p
            Gary Ruben
            CC - IA and SIM

            Comment

            Working...
            X