Originally Posted by
master131
Today at 23:39/11:39PM GMT, there was a reported breach of security in the systems that contains vBulletin credentials and private messages. A similar thing happened in February and its most likely related to the series of DDOS attacks that MPGH has been experiencing lately (they have been circumvented with the help of CloudFlare's DDOS protection). Logs suggest that the perpetrator is hiding behind a VPN and we are currently in negotiation with the VPN provider to provide us with the real IP address.
8K post ban. 8K post ban. 8K post ban. 8K post ban. 8K post ban. 8K post ban.
It is not exactly known if any data was actually taken but the credentials are stored as encrypted hashes and not as plaintext or encrypted plaintext to prevent easy retrieval of passwords (this is the default setting on vBulletin anyway). This will also increase the time it will take for CPU/GPU dictionary/rainbow table/bruteforce password crackers to retrieve the original password.
8K post ban. 8K post ban. 8K post ban. 8K post ban. 8K post ban. 8K post ban.
As a security precaution, it is highly suggested that you change your passwords immediately. An email and private message will be sent to all users soon after we've completed our investigation.
8K post ban. 8K post ban. 8K post ban. 8K post ban. 8K post ban. 8K post ban.
Cybercrime and cyber-espionage is a prevalent issue in the world today and many websites are hacked or breached for financial or personal gain and we just unfortunately happened to become a victim to one of these attacks. I am currently working with some other security analysts and auditors to overhaul the security at MPGH to prevent events like this from repeating.
8K post ban. 8K post ban. 8K post ban. 8K post ban. 8K post ban. 8K post ban.
Thank you for your co-operation,
master131, MPGH Game Hacking and Security Team.