Forum Breach: A Post-Hack Summary

Discussion in 'News' started by Nillbugwtw, Dec 9, 2015.

  1. Nillbugwtw

    Nillbugwtw Zombier than thou.

    • Community Admin
    • Donor
    Joined:
    Aug 6, 2011
    Messages:
    928
    Likes Received:
    1,070
    Hey all,
    A few of you may have noticed that the front page of our forums was compromised earlier, with a threat to release our database and leak user passwords. After some help from our dear Malcovent and some research from Psycho, we've determined that this is a hoax - this has been happening to other Minecraft-centric communities lately, and we were simply the latest target.

    The weak link that lead to the compromise, unfortunately, was a certain administrator's password, and, having checked through admin logs, the only information that was accessed was front-end forum information - template changes which lead to the front page modification, and the removal of some now-reinstated administrators - not SQL data.

    In short, we currently have no reason to believe that the database has been compromised, nor has password or personally identifying information been leaked. The mid-level forum access that was breached did not contain any user's passwords, passwords to other areas of our community, or database access. The threats were only an attempt to extort money out of the community.

    All that being said, as with any forum "hack", EscapeRestart admins recommend changing your password, especially if you use it on other sites. Passwords are encrypted in the database, and while it is extremely unlikely that any information has been stolen, it's always better to be safe and change your password.

    Moving forward into the future, we will be rolling out new forum upgrades in the coming month that includes two-step verification options for both staff and members - a significant upgrade in identify verification for our forums.

    Until then, we've taken extra security steps to make sure this doesn't happen again. Please post any questions you may have below, or shoot myself and the other administrators a PM - I'd be happy to address them.


    Nillbugwtw
     
    • Like Like x 11
    • Winner Winner x 4
    • Informative Informative x 2
    • Confusing Confusing x 1
  2. Nottykitten

    Nottykitten Nomnomnom kitteh!

    • Server Developer
    • SMP Staff
    Joined:
    Aug 7, 2011
    Messages:
    2,028
    Likes Received:
    1,826
    So they were the ones that put the gameservers tab in front of the forums tab. Those bastards!
     
    • Agree Agree x 4
    • Like Like x 3
    • Funny Funny x 1
    • Winner Winner x 1
  3. Nillbugwtw

    Nillbugwtw Zombier than thou.

    • Community Admin
    • Donor
    Joined:
    Aug 6, 2011
    Messages:
    928
    Likes Received:
    1,070
    And they removed those halloween ratings too!
    :furious:
     
    • Funny Funny x 4
    • Agree Agree x 2
    • Like Like x 1
    • Oh no! Oh no! x 1
  4. Notme

    Notme Self-Aware Forum AI

    Joined:
    Aug 6, 2011
    Messages:
    6,351
    Likes Received:
    6,387
    When it happened?
     
  5. Jayfeather

    Jayfeather Gay Magician

    • Donor
    Joined:
    Aug 6, 2011
    Messages:
    3,206
    Likes Received:
    1,445
    I stand corrected apparently we're popular enough to get hackered
     
    • Funny Funny x 8
    • Like Like x 3
    • Winner Winner x 2
    • Informative Informative x 1
  6. Mastersten

    Mastersten In Omnia Paratus

    • Donor
    Joined:
    Apr 7, 2012
    Messages:
    867
    Likes Received:
    630
    [​IMG]
     
    • Like Like x 2
    • Dislike Dislike x 1
  7. Psycho

    Psycho Insufficient Data

    • Donor
    Joined:
    Feb 19, 2012
    Messages:
    1,470
    Likes Received:
    1,337
    Uh, that was me.
     
    • Informative Informative x 2
    • Oh no! Oh no! x 1
  8. Nottykitten

    Nottykitten Nomnomnom kitteh!

    • Server Developer
    • SMP Staff
    Joined:
    Aug 7, 2011
    Messages:
    2,028
    Likes Received:
    1,826
    Shhh just blame it on them. Those bastards!
     
    • Funny Funny x 3
    • Like Like x 1
    • Thank You Thank You x 1
    • Agree Agree x 1
  9. Malcovent

    Malcovent Geezuslike

    • Donor
    Joined:
    Aug 5, 2011
    Messages:
    1,146
    Likes Received:
    1,848
     
    • Agree Agree x 2
    • Winner Winner x 2
    • Funny Funny x 1
  10. Aqua

    Aqua Does anybody remember laughter? Mafia Host

    Joined:
    Mar 29, 2015
    Messages:
    599
    Likes Received:
    708
    Sigh these guys were boring, the least they could do was make Boogie Wonderland play on repeat as soon as you join.
    Speaking of which...

     
    • Dislike Dislike x 1
  11. Mastersten

    Mastersten In Omnia Paratus

    • Donor
    Joined:
    Apr 7, 2012
    Messages:
    867
    Likes Received:
    630
    Atleast it wasnt Never Gonna Give You Up


    But still..
    [​IMG]
     
    • Funny Funny x 2
    • Like Like x 1
  12. paceboys

    paceboys Member

    Joined:
    Oct 21, 2011
    Messages:
    1,145
    Likes Received:
    648
    shame they didnt hack the donation total to 100%
     
    • Funny Funny x 4
    • Agree Agree x 1
    • Winner Winner x 1

Share This Page