Almost 820 000 accounts hosted on various Internet forums have been leaked due to an exploit caused by running an older version of the software.
VBulletin Forums Leak A Lot Of Data
A new large-scale vBulletin hack was recently reported by security experts. According to the available information the dumped database contains almost 820 000 accounts from 126 forums. The exploit was verified by the breach notification service Hacked-DB, the attacks were conducted between January and February 2017. The information includes the usernames, email addresses, hashed passwords and the associated IP addresses.
Most of the accounts were linked to the most widely used free email services – Gmail, Hotmail and Yahoo. The criminals behind the attack probably utilized multiple security issues that have been reported to being available in older versions of the VBulletin software. In the latest version they have been removed, however it seems that a large number of online communities have not updated their installations at the time of the intrusion. The initial announcement about the security problems were posted in June 2016:
“A security issue was reported to us that affects vBulletin 4. We have released security patches for vBulletin 4.2.2 & 4.2.3 to account for this vulnerability. The issue could potentially allow attackers to perform SQL Injection attacks via the included Forumrunner add-on. It is recommended that all users update as soon as possible. If you’re using a version of vBulletin 4 older than 4.2.2, it is recommended that you upgrade to the latest version as soon as possible.”
The forums running the software can easily be identified by using ordinary search engines. The security experts report that the following sites have been affected by the leak.