back to article Password reset invoked after vBulletin.com forum software site defaced

The official website of vBulletin.com forum software has hit the big red password reset following a breach by hackers that exposed the IDs of hundreds of thousands of users. A hacker claimed the had made off with a combined 480,000 records after an attack that led to the defacement of the vBulletin.com and a reported hack …

  1. This post has been deleted by its author

    1. Captain Badmouth
      Coat

      About time someone turned the tables on these hackers.

      Mines the one with the RIAA handbook in the pocket.

  2. websey

    fairplay

    To be honest as vbulletin must be creaking on to 15 years old and still suffering from SQLi attacks

    You have to ask if the developers have learned anything in that time ? The fact it is SQLi attack shows they haven't.

    You can try and make the language better / safer but if the devs don't do their bit what's the point

    1. Stuart 22

      Re: fairplay

      "You have to ask if the developers have learned anything in that time ? "

      The developers are no longer there. They went on to build XenForo. The new owners ov vBulletin attempted to screw their base. Many followed the developers.

      More info: https://en.wikipedia.org/wiki/XenForo

  3. Your alien overlord - fear me
    Facepalm

    Er, they didn't then take their users security that seriously then.

  4. Anonymous Coward
    FAIL

    I think it's time to turn the Internet off. This is starting to get ridiculous.

  5. leexgx

    and its all still using MD5 hashing as well (unless they changed that)

    1. Anonymous Coward
      Anonymous Coward

      It's still doing that, unless it isn't?

    2. Sidney FFF

      They did. Blowfish now.

  6. Sidney FFF

    VB5 uses Blowfish not MD5. It was changed over a year ago.

  7. bonmonika

    Też miałem z tym problem, ale dałem radę.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like