Providing Free and Editor Tested Software Downloads

MajorGeeks.com - If you thought our name was dumb, look at this slogan we got.

All In One Tweaks

Antivirus & Malware

Drives (SSD, HDD, USB)

Graphics & Photos

MajorGeeks Windows Tweaks

Office & Productivity

· How To and Tutorials
· Life Hacks and Reviews
· Way Off Base
· MajorGeeks Deals
· News
· Off Base
· Reviews

IObit Black Friday Sale

· YouTube
· Facebook
· Instagram
· Twitter
· Pintrest
· RSS/XML Feeds

· News Blur
· Yahoo
· Symbaloo

· Top Freeware Picks
· Malware Removal
· Geektionary
· Useful Links
· About Us

· Copyright
· Privacy
· Terms of Service
· How to Uninstall

1. GS Auto Clicker

2. Macrium Reflect FREE Edition

3. Smart Defrag

5. Sergei Strelec's WinPE

6. Microsoft Visual C++ 2015-2022 Redistributable Package

7. Visual C++ Redistributable Runtimes AIO Repack

8. McAfee Removal Tool (MCPR)

9. K-Lite Mega Codec Pack

10. Tweaking.com - Windows Repair

All the New Features Landing in Windows 11 This December

Lossless vs Lossy: When FLAC, APE, and ALAC Beat MP3 and When They Don't

Google Search Tricks You'll Actually Use in 2025 and Beyond

Fresh PC Checklist: First 12 Things to Do On a New Windows 11 Machine

Running AI Models Locally: What They Are, Where to Find Them, and How to Get Started

Deciding Between Idle State, Sleep Mode, and Shutdown: What's Best for Your PC?

How to Fix VMware Workstation "The Update Server Could Not Be Resolved" Error Installing VMware Tools

How to Remove Google Gemini from Your Phone (and Your Life)

Windows Bloat Removal Guide: Debloat Safely and Keep What You Need

Windows 11 Repair Playbook: SFC, DISM, CHKDSK Without Breaking Stuff

vBulletin Breached; User Data Compromised

Posted by: Timothy Weaver on 11/07/2015 10:10 AM [ Comments ]

vBulletin was breached and it made 480,000 subscribers vulnerable. To mitigate the attack, vBulletin reset the passwords for all subscribers.

A security patch was released Monday night, but ars technica suggested that from available evidence the site "contained a zero-day vulnerability that allowed hackers in the wild to gain almost complete control over websites that used the forum app."

Wayne Luke, technical support lead at vBulletin, denied it being a zero day attack and instead suggested that the attack was: "These hackers were able to compromise an insecure system that was used for testing vBulletin mobile applications."

However, Tod Beardsley, principal security research manager at Rapid7, said in a statement issued on Wednesday, that it looks like the attack on vBulletin was due to a SQL injection bug in its forum software.

Beardsley went on to say that organizations that rely on vBulletin should apply the security patch immediately. "vBulletin is a popular target, since compromising a forum site can provide an effective platform for a watering hole attack. An unpatched bug in the platform can expose downstream users to serious risk."

Source: SCMagazine

Comments

comments powered by Disqus

© 2000-2025 MajorGeeks.com

Powered by Contentteller® Business Edition