Comprimised Passwords Update

Discussion in 'Site News' started by Qjimbo, Jul 14, 2011.

Thread Status:
Not open for further replies.
  1. Qjimbo

    Qjimbo Well-Known Member Member

    Joined:
    Feb 27, 2008
    Messages:
    849
    Location:
    Vancouver, BC
    Since this has been published pretty much everywhere else I'll get straight to the point. Some time ago, the login_core script was modified to log all passwords to the text file on the server, the date this was done is not exactly known. This was not done as an official modification, this was a deliberate malicious hacking attempt by someone with access. PsychoSk8rs FTP account was also compromised on the server and scripts were uploaded that allowed the perpetrator to run a telnet daemon and run whatever commands they wished.


    All these holes have been removed and I'm still doing more forensic research since I keep logs for almost everything. I'm hoping I can find the exact date login_core was modified and by whom.


    Anyway, please CHANGE YOUR PASSWORD AS SOON AS POSSIBLE BY CLICKING THIS LINK and your password on any other sites which use the same one. I apologize deeply for any inconvenience this has caused you.
     
Thread Status:
Not open for further replies.