Hackers Asking $7,000 for vBulletin.com Exploit

A hacker group is claiming responsibility for exploiting a zero-day flaw in the vBulletin Internet forum software. Hackers are bragging that they broke into both the MacRumors.com and vBulletin.com forums.

VBulletin Solutions, the company that develops the online forum software, reset all account-holder passwords on Friday. The company has confirmed that customer log-in credentials were indeed stolen.

EUVery recently, our security team discovered sophisticated attacks on our network, involving the illegal access of forum user information, possibly including your password,EU the company said on its bulletin board. EUOur investigation currently indicates that the attackers accessed customer IDs and encrypted passwords on our systems. We have taken the precaution of resetting your account password. We apologize for any inconvenience this has caused but felt that it was necessary to help protect you and your account.EU

A $7,000 Exploit?!

The Inj3ct0r Team, the hacker group that claims to be behind the attack, posted a note on Facebook saying that it not only hacked vBulletin.com and Macrumors.com but also got to the shell, the database and the root server. The hackers wanted to prove that EUnothing is this worldEU is safe.

EUWe found a critical vulnerability in vBulletin all versions 4.x.x and 5.õ.x. We've got upload shell in vBulletin server, download database and got root,EU the hackers wrote. EUMacrumors.com was based on vBulletin CMS. We use 0day exploit on vBulletin, got password moderator. 860000 hacked too. The network security is a myth.EU

The Inj3ct0r Team offered to sell the vulnerability for $7,000. The post generated more than 190 likes, 49 shares, and 58 comments as of the time of this writing. One Facebooker named Kori Stroud said, EUNo one will pay $7000 for this or any other exploit. But good try though.EU

Is It a Scam?

Brian Krebs, a former Washington Post reporter who now runs KrebsonSecurity, reports that several...

Comments are closed.

Hackers Asking $7,000 for vBulletin.com Exploit

A hacker group is claiming responsibility for exploiting a zero-day flaw in the vBulletin Internet forum software. Hackers are bragging that they broke into both the MacRumors.com and vBulletin.com forums.

VBulletin Solutions, the company that develops the online forum software, reset all account-holder passwords on Friday. The company has confirmed that customer log-in credentials were indeed stolen.

EUVery recently, our security team discovered sophisticated attacks on our network, involving the illegal access of forum user information, possibly including your password,EU the company said on its bulletin board. EUOur investigation currently indicates that the attackers accessed customer IDs and encrypted passwords on our systems. We have taken the precaution of resetting your account password. We apologize for any inconvenience this has caused but felt that it was necessary to help protect you and your account.EU

A $7,000 Exploit?!

The Inj3ct0r Team, the hacker group that claims to be behind the attack, posted a note on Facebook saying that it not only hacked vBulletin.com and Macrumors.com but also got to the shell, the database and the root server. The hackers wanted to prove that EUnothing is this worldEU is safe.

EUWe found a critical vulnerability in vBulletin all versions 4.x.x and 5.õ.x. We've got upload shell in vBulletin server, download database and got root,EU the hackers wrote. EUMacrumors.com was based on vBulletin CMS. We use 0day exploit on vBulletin, got password moderator. 860000 hacked too. The network security is a myth.EU

The Inj3ct0r Team offered to sell the vulnerability for $7,000. The post generated more than 190 likes, 49 shares, and 58 comments as of the time of this writing. One Facebooker named Kori Stroud said, EUNo one will pay $7000 for this or any other exploit. But good try though.EU

Is It a Scam?

Brian Krebs, a former Washington Post reporter who now runs KrebsonSecurity, reports that several...

Comments are closed.