Board Hacking, Redirection Issue

Bob Hubbard

Bob Hubbard

Retired
MT Mentor
Founding Member
Lifetime Supporting Member
MTS Alumni
Joined
Aug 4, 2001
Messages
47,245
Reaction score
772
Location
Land of the Free
There is a hole in one of the add-ons we use that was exploited to force a redirection of traffic from MartialTalk to a hacker site.

That hole has now been patched.

I strongly advise all members who have visited in the last 1 hours to do a complete scan of their systems for spyware. Though I haven't found anyyet, I prefer to err on the side of caution here.

I will be performing additional checks and upgrades to various parts of the site all weekend to ensure all possible issues are resolved.

In this particular issue, no data was effected, nor any files. They basically exploited a loophole in how 1 plugin processes thread titles. That plugin is disabled.

I apologize for the inconvenience.
 
Lisa

Lisa

Don't get Chewed!
MTS Alumni
Joined
Jul 22, 2004
Messages
13,582
Reaction score
95
Location
a happy place
I just spoke to Bob via phone. He asks that everyone clear their browser cache and cookies just as a precaution.

You can find instructions here.

Any problems doing this post them here and we will try and help you out. :)
 
Kacey

Kacey

Sr. Grandmaster
MTS Alumni
Joined
Jan 3, 2006
Messages
16,462
Reaction score
227
Location
Denver, CO
Thanks for the reminder, and the how-to's - I did run a virus scan (thankfully, negative), but had forgotten about cleaning out the cookies... there were some truly odd cookies in there, and I've now changed my cookie settings to keep some of them out in the future!
 
Brother John

Brother John

Senior Master
Joined
Jan 13, 2002
Messages
2,530
Reaction score
59
Location
Wichita Kansas, USA
Thanks for:
  1. Staying on your guard
  2. Being very responsive & proactive
  3. letting us know...
keep up the good work man. MT is the BEST!!


Your Brother
John
 
OP
Bob Hubbard

Bob Hubbard

Retired
MT Mentor
Founding Member
Lifetime Supporting Member
MTS Alumni
Joined
Aug 4, 2001
Messages
47,245
Reaction score
772
Location
Land of the Free
Official notice:
Earlier today, hackers exploiting a hole in one of the plugins that are used with the vBulletin software began a large scale assault across the internet. Hundreds of boards including MartialTalk and the forum at Rustaz were effected.

FMAT and Kenpotalk were caught in time, and the NHBG runs different software so isn't at risk.

The hole has been patched on all boards with certain code now added to the filter, and the at-risk plugin is disabled at this time.

Additional security checks and upgrades will be performed as fast as humanly possible across all vB forums in the network.

The exploit was a simple redirection to another site. While we have not found any evidence of further damage, we do strongly suggest that you clear your browser cache, and do a complete spyware scan of your system, just to be safe.

Thank you
Bob Hubbard
President, SilverStar WebDesigns Inc.
 
F

Fu_Bag

Blue Belt
Joined
Jul 6, 2005
Messages
257
Reaction score
4
I would also just like to say:

1. Thank You for everythiing you do for the martial arts community :)

2. Bob Hubbard Rules!!!

3. MT Rocks. :D

4. The Geek shall inherit the Earth..........


Respectfully,

Fu Bag :)
 
You must log in or register to reply here.

A Warning to "Promotional Posters"

Previous Thread

Notice of upgrade pending - Sunday Sept 3rd 2006

Next Thread

Latest Discussions

Top