vBulletin (vB), an Internet forum software widely used by the owners of websites. Recently, a critical vulnerability in the old version of the software allows the hackers to breach old forum that has not been updated to the latest version of the forum’s software.
A hacker on the online Twitter handle of “CrimeAgency” claimed that they hacked 126 vBulletin (vB) based forum, that gave them access to the personal data of the forum’s administrator and registered user, ended up leaking it on the underground hacking forum. That is revealed by the online data mining and breach notification platform Hacked-DB.
It is assumed that the hack was conducted between January and February 2017 in which accounts of more than eight thousand users were stolen from the vulnerable forums. The stolen data contains the email address, hashed password, and multiple unique IP addresses. Email count based on the domain is as 219,3234 Gmail accounts, 11,070 Outlook accounts, 108,777 Yahoo accounts and 121,507 accounts of Hotmail.
The majority of the hacked forums are based on the vBulletin 4.x that are exploited by multiple vulnerabilities that also includes the SQL injection attacks. vBulletin support forum clarifies that the issue was reported in June 2016. According to the forum
“A security issue was reported to us that affects vBulletin 4. We have released security patches for vBulletin 4.2.2 & 4.2.3 to account for this vulnerability. The issue could potentially allow attackers to perform SQL Injection attacks via the included Forumrunner add-on. It is recommended that all users update as soon as possible. If you’re using a version of vBulletin 4 older than 4.2.2, it is recommended that you upgrade to the latest version as soon as possible.”
Website based on the vBulletin can be identified easily by using the Google Dorks. However, it has been found that some of the users are still using the outdated version of vBulletin, that expose them to the large-scale data breach. Recently in last few years, some of the high profile forums also faced the problem of the massive data breaches due to very similar security flaws.
List of the hacked forum is available on the Pastebin website These hacked forums also includes NSFW. If any of the users was using the outdated version of vBulletin, malc0de community highly recommend to update their forum to the latest version.