Vbulitan hacks

[stevec]

It looks like British blades has succumbed to the vbul4.2 hack. Malicious code is injected into the SQL headers. Best look to change passwords if you use the same one on many sites

 

[Toddy]

Might be a timely reminder across the boards.
Thanks for the heads up, Steve

M

 

[leaky5]

Thanks for that, changed all mine now

 

[C_Claycomb]

Is that the same thing that has been re-directing people to a My.filespace page? Apparently that has been going on for months. I only had it happen in the last few weeks though. Same thing happens on Hammock Forums.

There seems to be very little information and no feedback from admin on either site when the subject is discussed by members.

 

[stevec]

It's a well know flaw, first heard about it on tzuk. There are hundreds of sites affected

 

[beachlover]

There seems to be very little information and no feedback from admin on either site when the subject is discussed by members.

As far as BB is concerned and has already been stated to members over there, only the owner can deal with the server company and arrange to get this sorted. For his own reasons Martyn is rarely contactable or online and we staff do our best to keep the ship afloat.

 

[Adze]

Anyone with console access to the server can fix it - is Martin the only admin?

 

[Nice65]

Anyone with console access to the server can fix it - is Martin the only admin?

Only one with server access unfortunately.

 

[stevec]

I'm sure it will get sorted, just wanted to warn ppl here that's all. Not having a dig at the BB admins and mods

 

[Corso]

several US forums have had the same issue for well over a year

 

[beachlover]

I'm sure it will get sorted, just wanted to warn ppl here that's all. Not having a dig at the BB admins and mods

Absolutely no offence taken. As you can probably imagine, it's at least as frustrating for us sometimes.

 

[stevec]

Somewhat of an understatement that I feel. I don't envy you one iota. Good luck in getting it sorted

 

[C_Claycomb]

Definitely no dig from me either. I have done a little more digging around, but not being enough of an IT tech I don't know whether the problem is merely one of defacing the site and attempting to get people to click on links on the page one is redirected to for further malware installation, or whether the hack could fundamentally compromise passwords and personal details on the sites effected.