25 August 2016

vBulletin users suffer massive data breaches

vBulletin users suffer massive data breaches

Recent reports regarding multiple website hacks and data breaches are extremely alarming. It seems like the usage of a faulty and popular software can get you hacked, if not patched in time.

Two breaches reported yesterday in Mail.ru and Funcom forums are clear evidence of a huge problem in web application software.

In case of mail.ru forums, the hackers were able to leak more than 25 million user accounts. The compromised communities are:

  • cfire.mail.ru (Cross Fire game)
  • parapa.mail.ru (ParaPa Dance City game)
  • tanks.mail.ru (Ground War: Tank game)

The Funcom leak is not that huge, just about 228 000 accounts.

Both incidents seem to be connected to usage of vulnerable vBulletin installation (SSRF vulnerability SB2016081009). The latest security patch for vBulletin was announced on August 1, describing fixes for remote code execution vulnerability in all versions of vBulletin.

This is not the first issue with vBulletin forums. The same outcome with a different vulnerability was achieved by Dota2, Trillian and Ubuntu forums in July this year.

If you use vBulletin, please patch it ASAP. To resolve this issue install security patch from vendor's website:

5.2.2 Patch Level 1
5.2.1 Patch Level 1
5.2.0 Patch Level 3

4.2.3 Patch Level 2
4.2.2 Patch Level 6

3.8.9 Patch Level 1
3.8.8 Patch Level 2
3.8.7 Patch Level 6

Back to the list

Latest Posts

New Mirai variant hides its C&Cs in Tor network for anonymity

New Mirai variant hides its C&Cs in Tor network for anonymity

The use of Tor network helps the malware operators to conceal its command and control servers and to avoid detection.
1 August 2019
New Android ransomware spreads via malicious posts on Reddit and XDA Developers forums

New Android ransomware spreads via malicious posts on Reddit and XDA Developers forums

After infecting an Android mobile device, Filecoder scans the victim's contact list and sends links on ransomware to all the entries in the list.
31 July 2019
Critical flaws in VxWorks RTOS impact over 2 billion devices, including routers, printers and SCADA

Critical flaws in VxWorks RTOS impact over 2 billion devices, including routers, printers and SCADA

URGENT/11 vulnerabilities pose a serious risk as they allow attackers to take over devices with no user interaction required.
30 July 2019
Featured vulnerabilities
MitM attack in Cisco HyperFlex
Medium Patched | 22 Aug, 2019
Multiple vulnerabilities in Palo Alto PAN-OS
High Patched | 22 Aug, 2019