Jump to content

Wht Database Hacked/leaked

Daniel B

By Daniel B
in The Lounge

 Share

Recommended Posts

Michael Apprentice

Michael

Posted
Posted

I wouldn't change their password if I was anyone there, I can't log into mine so my passwords aren't effected but they haven't announced it themselves and I bet the hackers still have access as it's a outdated forum with a SQLi exploit fixed in June (if they updated). 

Link to comment
Share on other sites
Nelsa Newbie

Nelsa

Posted
Posted

Last time I cheked it is not just WHT but complete databases from 4 of 5 Penton's websites....all user data from these 4 websites are available....e-mails,usernames, ..and other profile fields stored in DB ..  till now about 60% of passwords are decrypted..the rest is not decrypted yet..probably passwords from users who used harder passwords

I read  somewhere that all user will have to use reset pass link but I didn't see it on published on WHT but I couldn't log in with mine so I suppose it is true..

To be hones when you lok all penton's sites...one wordpress 3.9 second W.P 4.x.x version , vBulletin 4...must feel like in museum,maybe this is not reason but just fact that they use outdated version will make them targeted much more  .

I understand that such big user base is not easy to upgrade but they should have resouce for this..or they just worry for income..

Link to comment
Share on other sites
Michael Apprentice

Michael

Posted
Posted

Last time I cheked it is not just WHT but complete databases from 4 of 5 Penton's websites....all user data from these 4 websites are available....e-mails,usernames, ..and other profile fields stored in DB ..  till now about 60% of passwords are decrypted..the rest is not decrypted yet..probably passwords from users who used harder passwords

I read  somewhere that all user will have to use reset pass link but I didn't see it on published on WHT but I couldn't log in with mine so I suppose it is true..

To be hones when you lok all penton's sites...one wordpress 3.9 second W.P 4.x.x version , vBulletin 4...must feel like in museum,maybe this is not reason but just fact that they use outdated version will make them targeted much more  .

I understand that such big user base is not easy to upgrade but they should have resouce for this..or they just worry for income..

As far as I know it's just for the WHT Staff, and yeah the people with a symbol in the password like !*():;<> as I don't think rainbow tables will have them.

Link to comment
Share on other sites
Paul Community Regular

Paul

Posted
Posted

I saw this briefly on another website on Friday, that they were selling the leaks. Hotscripts was also affected among others. Double checked that the password I was using there was unique, and it was. With so many properties being hit, I can't help but think Penton was negligent in some way.

Link to comment
Share on other sites
Paul Community Regular

Paul

Posted
Posted

Just read through some of the posts in that WHT thread... they were using MD5 passwords?!! Seriously. They might as well be plain text. We switched to bcrypt, HMAC-SHA-256 hashes in Blesta 3.0 years ago and wrote about it a year before v3 was released here - http://www.blesta.com/2012/08/17/blesta-3-0-more-on-security-video-2/

 

Nobody learns, and big companies like Penton have no excuses. They have the means.

Link to comment
Share on other sites
Nelsa Newbie

Nelsa

Posted
Posted

As far as I know it's just for the WHT Staff, and yeah the people with a symbol in the password like !*():;<> as I don't think rainbow tables will have them.

You can read here about penton's sites hacked (it is link I find on WHT )

http://www.csoonline.com/article/3093018/security/mac-forums-hot-scripts-and-web-hosting-talk-databases-for-sale.html

 

In short  they say these sites owned by Penton are compromited(1,7 million users); Mac-Forums, Hot Scripts, and Web Hosting Talk

 

Data is selling through "The Real Deal Dark Web" marketplace but I didn't chek :)...what to say luckly they only had forum account and profil data...But I suppose there is  some users or even host masters who use same passwords everywhere..like root passwords..etc..this should be big warning to everyone...

Link to comment
Share on other sites
PauloV Newbie

PauloV

Posted
Posted

Hello,

 

Thanks for the warning, I was distracted this days and didnt notice the Hack, time to update passwords once again :) Luckly all are diferent :)

 

WebHostingTalk is/was to quiet lol only yesterday they started anounce on a Post with a strange title lol "Security Update for Registered Users" insted "Security Breach at WebHostingTalk"

Like this one in 2009 http://www.webhostingtalk.com/showthread.php?t=729362 :)

Link to comment
Share on other sites
Paul Community Regular

Paul

Posted
Posted

Hello,

 

Thanks for the warning, I was distracted this days and didnt notice the Hack, time to update passwords once again :) Luckly all are diferent :)

 

WebHostingTalk is/was to quiet lol only yesterday they started anounce on a Post with a strange title lol "Security Update for Registered Users" insted "Security Breach at WebHostingTalk"

Like this one in 2009 http://www.webhostingtalk.com/showthread.php?t=729362 :)

 

Yep, it's called damage control, and it's shady. People miss it, and don't change their password at other sites if they used the same one.

 

It made me reset my password today but I couldn't log in on the page it directs you to, totally broken. Probably why not many people logged in right now.

Link to comment
Share on other sites
  • 5 weeks later...
ExpertIntegrations Newbie

ExpertIntegrations

Posted
Posted

Yeah I noticed that a lot of these community forums are being exploited,  I know there is a few car forums that I belong to seem to got done the same way WHT got done.  So apparently this is a wide spread issue & hopefully something can be done to help minimize any future exploits to help safe-guard users & there private sensitive details.

Link to comment
Share on other sites
Michael Apprentice

Michael

Posted
Posted
4 hours ago, ExpertIntegrations said:

Yeah I noticed that a lot of these community forums are being exploited,  I know there is a few car forums that I belong to seem to got done the same way WHT got done.  So apparently this is a wide spread issue & hopefully something can be done to help minimize any future exploits to help safe-guard users & there private sensitive details.

What irritates me is WHT (vb 4.2.2 Patch Level 4) and Ubuntu forums (vb 4.2.2 Patch Level 1) haven't upgraded they are going along as if it's nothing. VB released a new patch called vb4.2.2 Patch Level 6, so they should be on that version, but they aren't so glad I don't use WHT anymore or Ubuntu because they don't care about their users. That or security is so low they are just waiting to get a nice hack page before they act.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
 Share
Go to topic listing
×
×
  • Create New...