Results 1 to 15 of 79

Threaded View

  1. #1
    master131's Avatar
    Join Date
    Apr 2010
    Melbourne, Australia
    My Mood

    [Alert] MPGH Security Breach.

    Today at 11:00AM GMT, MPGH's MySQL database was hacked through a SQL injection exploit (I will not reveal what statement/string was used to break through the security). The IP address of the perpetrator has been logged and we are currently working with security firms to help look into this ongoing investigation. The issue is that the person who performed the exploit is behind a VPN and we require assistance from others to trace it.

    We've reported this exploit to the creators of vBulletin and hope that they patch this exploit as soon as possible to prevent damage on other forums powered by vBulletin.

    We've analysed the logs around the time of breach and have noticed that the database containing sensitive information such as passwords, emails and birthdays may have been accessed.

    As a result of this security breach, we recommend that you change your passwords immediately. Note that they are not stored in plain-text (that would be really stupid) because passwords are submitted to the server as a MD5 hash anyway when you log in and are stored with extra encryption and protection when stored in the database. However with the prevalence of rainbow tables and password-cracking tools that support GPU acceleration and even dedicated servers which perform password cracking, converting these salted passwords into plain-text may not be such a challenge assuming the salt is found.

    Everyone will receive a PM or e-mail soon notifying them to change their passwords immediately (Dave needs to do this but he's sleeping). The faster you change it, the safer you are. Also, just in-case you think that changing the password will just result the database in being accessed again, don't worry, we've patched the PHP file that was exploited.

    Thank you for your co-operation,
    MPGH Staff.

    tl;dr - MPGH was breached, change your passwords ASAP.

    7K guise, ban me. This is not real, MPGH is safe.
    Last edited by master131; 02-23-2013 at 07:04 AM.
    BTC: 1GEny3y5tsYfw8E8A45upK6PKVAEcUDNv9

    Handy Tools/Hacks:
    Extreme Injector v3.7.3
    A powerful and advanced injector in a simple GUI.
    Can scramble DLLs on injection making them harder to detect and even make detected hacks work again!

    Minion Since: 13th January 2011
    Moderator Since: 6th May 2011
    Global Moderator Since: 29th April 2012
    Super User/Unknown Since: 23rd July 2013
    'Game Hacking' Team Since: 30th July 2013

    --My Art--
    [Roxas - Pixel Art, WIP]
    [Natsu - Drawn]
    [Natsu - Coloured]

    All drawings are coloured using Photoshop.


  2. The Following 2 Users Say Thank You to master131 For This Useful Post:

    Chrome Boy (02-26-2013),Royce (02-24-2013)

Similar Threads

  1. Security Breach! WARNING!!!
    By Couscous818 in forum General
    Replies: 1
    Last Post: 12-22-2012, 05:30 AM
  2. MPGH has no security!
    By ARHQA$Y$YW4AYG4y in forum General
    Replies: 12
    Last Post: 06-04-2011, 04:24 AM
  3. Hacker on MPGH using Personal Security! BEWARE!
    By Sals in forum Combat Arms Discussions
    Replies: 27
    Last Post: 01-01-2010, 12:15 AM
  4. [Discussion] EU MOD poses security threat to mpgh members
    By Gilcrow in forum Combat Arms Europe Hacks
    Replies: 16
    Last Post: 11-17-2009, 09:29 AM
  5. MPGH Security
    By Arhk in forum Combat Arms Hacks & Cheats
    Replies: 18
    Last Post: 04-10-2009, 08:41 PM