Collaborate Disseminate
An anonymous bug hunter has released a working and elegantly simple exploit for a pre-authentication remote code execution flaw (CVE-2019-16759) affecting vBulletin and it didn’t take long for attackers to start using it. About vBulletin vBulleti… Continue reading vBulletin zero-day exploited in the wild in wake of exploit release
An anonymous hacker today publicly revealed details and proof-of-concept exploit code for an unpatched, critical zero-day remote code execution vulnerability in vBulletin—one of the widely used internet forum software, The Hacker News has learned.
One… Continue reading [Unpatched] Critical 0-Day RCE Exploit for vBulletin Forum Disclosed Publicly
Gamers are easy pickings for credential crooks, thanks to lax security hygiene and poor gaming company practices. Continue reading Gamers Are Easy Prey for Credential Thieves
By Waqas
According to the latest research from Italy based security company
This is a post from HackRead.com Read the original post: Two critical and unpatched flaws identified in vBulletin
Continue reading Two critical and unpatched flaws identified in vBulletin
Security researchers have discovered and disclosed details of two unpatched critical vulnerabilities in a popular internet forum software—vBulletin—one of which could allow a remote attacker to execute malicious code on the latest version of vBulletin … Continue reading Two Critical 0-Day Remote Exploits for vBulletin Forum Disclosed Publicly
By Waqas
A couple of weeks ago we reported that a hacker has compromised hundreds of VBulletin based web forums and leaked their data on an underground hacking forum. Now another hacker going by the handle of “Cfnt” has compromised 25 web forums which were using an outdated version of vBulletin forum software. Their data is now being […]
This is a post from HackRead.com Read the original post: 25 vBulletin Forums Hacked; Millions of Accounts Being Sold on Dark Web
Continue reading 25 vBulletin Forums Hacked; Millions of Accounts Being Sold on Dark Web
If you’re a member of an online forum, there’s a good chance that the site is running a piece of software called vBulletin.
And, depending on how well it has been patched, that may not be good news.
Read more in my article on the Hot for Security blog.
Continue reading Over 800,000 user account details stolen from vulnerable forums running vBulletin
PoliceOne only allows verified law enforcement officials to access certain parts of the site. Continue reading Hacker Steals Thousands of Accounts from Police Forum
By Waqas
If you have an account on Supercell, the company behind popular games like Clash of Clans, Clash Royale, Boom Beach and Hay Day, then it is time to change your password at the earliest. Reportedly, over a million user accounts on Supercell’s community forum have been hacked and data traders are willing to swap the […]
This is a post from HackRead.com Read the original post: Clash of Clans’ Developer “Supercell” Hacked; 1.1 Million Accounts Stolen
Continue reading Clash of Clans’ Developer “Supercell” Hacked; 1.1 Million Accounts Stolen
Account login credentials of nearly 800,000 Brazzers porn site users have been stolen in 2012, but the breach has only now come to light, after the data dump was obtained by breach monitoring site Vigilante.pw. Apparently, the credentials were stolen by attackers who leveraged a vBulletin vulnerability to dump the user database of Brazzersforum.com, a site that at the time was managed by a third party. According to Brazzers’ PR manager Matt Stevens, the “incident” … More → Continue reading Nearly 800,000 Brazzers users’ credentials exposed