Hackers Breach MyBB.com, Site Taken Offline (Updated)

[McLovin]

UGNazi hackers have taken credit for breaching mybb.com, the website of the free, open source, bulletin board. The site’s administrators have confirmed the hack and immediately acted on taking down the website.

“Last night our domain name and hosting accounts were compromised by hackers. Users of MyBB should not be concerned about their own installations. There is nothing to indicate the MyBB software itself contributed to the hacking in any way,” the website’s owners wrote.

Read more.

---

This is not a good thing. On MyBBGroup's Twitter they said that they have got access to their domain again and they are restoring it.

 

[Malware Maniac]

Hopefully there is no problem for the users of MyBB or else no MalwareTips possibly.

 

[McLovin]

They have said that it will not effect other MyBB installations.
Read here.

 

[Malware Maniac]

They are saying that MyBB is back and working but when I click on the link it says that it was attacked still. How do hackers manage to hack websites anyway?

 

[Jack]

Hackers Breach MyBB.com, Site Taken Offline

UGNazi hackers have taken credit for breaching mybb.com, the website of the free, open source, bulletin board. The site’s administrators have confirmed the hack and immediately acted on taking down the website.

“Last night our domain name and hosting accounts were compromised by hackers. Users of MyBB should not be concerned about their own installations. There is nothing to indicate the MyBB software itself contributed to the hacking in any way,” the website’s owners wrote.

“We hope to restore access to all services in the next 12 - 24 hours. At this stage we don't believe our database was compromised, however we recommend users stay vigilant to unauthorized access of their accounts.”

Cosmo, the hacker who was allegedly taken into custody by authorities for his involvement in the WHMCS breach, posted a tweet a couple of hours ago claiming that they still had “full access” to the website.

Even though MyBB representatives stated that the database wasn’t compromised, the hacktivist wrote that they would make it public in the upcoming hours.

In the past few weeks, many criticized the hacktivist collective for attacking sites for the wrong reasons and their statement regarding this particular breach also seems like one that would raise a lot of controversy.

“MyBB has a relatively low-risk security record. Personal information needs to be secure. If we can acces it, so can terrorists. The truth is buried under lies and false promises. We tried to bring the truth to light, and we were ignored,” UGNazi said.


Read more: http://news.softpedia.com/news/Hackers-Breach-MyBB-com-Site-Taken-Offline-272768.shtml

 

[pcjunklist]

RE: Hackers Breach MyBB.com, Site Taken Offline

http://malwaretips.com/Thread-Hackers-Breach-MyBB-com-Site-Taken-Offline-Updated

 

[bogdan]

Without being a programmer, I think that any site can be hacked. especially if it uses php (this includes forum software like MyBB or content management systems (like Joomla, Drupal, Wordpress, etc.). PHP is not secure by design, developers are asked to "sanitize their inputs", to avoid SQL injection a developer needs to use mysql_real_escape_string everywhere or addslases, is_numeric, etc. In a considerable large/complex software like a forum software or CMS even the greatest developers will make mistakes, leaving room for security flaws. Without being able to provide proof, I believe that most sites are regularly hacked... especially if they are well-known websites. However, I think (or hope) that hackers rarely get the entire database, maybe they are able to inject some code, place some malicious files on the server, etc. We don't hear about these incidents because the damage done is minimal and sys-admins regularly scan the server and remove malicious content.

 

[McLovin]

No website is safe, just MyBB was unlucky. It could happen to anyone's site.

 

[Malware Maniac]

Well MyBB is back online and running. They got rid of the hackers and regained control.

 

[McLovin]

Well MyBB is back online and running. They got rid of the hackers and regained control.

Correct they are back, but if you read this you will find some more information about the hacking.

Also if you read this thread about what Labrocca has to say about it.

 

[bogdan]

It appears that the hack had nothing to do with PHP security, MyBB vulnerabilities, etc:

The main incident that lead to the breach was a compromise of Chris’ personal Apple ID (iCloud, etc) account (Note: Chris Boulton is the founder of MyBB). From there, the hackers were able to reset passwords to our hosting and domain accounts.

Source: MyBB blog
A hacking group called UGNazi took responsibility for the hacking. (see UGNazi on Wikipedia.)
MyBB states that hackers didn't compromise the database. However I think it is a good practice to change the log-in credentials on MyBB.com after an incident like this.
Hackers' reasoning for attacking MyBB's official website was because a certain website (HackForums owned by Labrocca) is using MyBB software:

"hackforums.net" uses the forum software MyBB, We are tired of all the skids who claim they are hackers. As a personal note: we just don't like you, Jesse Labrocca.

Source: UGNazi statement on Pastebin

 

[McLovin]

Update they have the forum and all the mods and the wiki back up and they are online.