Change Passwords
Change Passwords
Can all the active members and people who have logged on in the last month or so, please change their passwords.
Nothing to be alarmed about, just someone got hold of a selection of passwords and be wise if everyone changed their passwords just to be safe. Saves your account posting messages you didnt.
Sorry for inconvience.
Real 16 will be out soon though!
ghost 17 years ago
I changed it becouse someone changed my title to "HACKED". This is very SK and i hope this person dont used my account for send pm to other users or post in the forum.
ghost 17 years ago
sigh…kiddies :xx: IF I would want to hack a site, a HACKING COMMUNITY would be the baddest target I could possebly think of..and leaving a URL at the crime scene :D…well, I don't know much about hacking but this sounds kinda dumb to me xD Password is changed btw, thanks for the notice! :happy:
ghost 17 years ago
Yeah i had to stay up till 3am.. making sure people didnt post anything stupid up. So I did all i could to stop them from abusing your accounts. Unfortunately my time is over here at HBH. Had a great time guys. Later :)
ghost 17 years ago
Well, EVERY site has security holes so it's not any real surprise that HBH was hacked. I can assure who ever hacked this site that they have condemned them selfs. I think that I speak for most members of hellbound when I say that we stand 100% behind cheese. Feel free to PM me when you have a plan to rain hell down on that n00b!!!! :evil:
ghost 17 years ago
That n00b, managed to hack HBH, which, I notice from the lack of your HoF, you haven't achieved, so you have no right to call this guy a n00b.
ghost 17 years ago
Insidious its not like they havnt patched anything or this shit would be hacked every day.
ghost 17 years ago
i partly agree with you insidious….. but coding a new cms and switching from the old one is a HUGE project, i dont think an one on hbh has that kinda time spare
ghost 17 years ago
HBH isn't HTS! If you, attacker, want to help site with security it is okay, but do not damage users like now!
Uber0n 17 years ago
insidious: Sure, making a CMS on your own is often the best, but I think the security is better in PHP-Fusion than in a new CMS (before you've got hacked a dozen times and patched your mistakes). Also, I think that HBH looks good and works well as it is now. :)
ghost 17 years ago
insidious: this version of php-fusion is must have been edited soooo much by now it basically is a different CMS. {mozzer on January 03 2007 - 20:15:51 That n00b, managed to hack HBH, which, I notice from the lack of your HoF, you haven't achieved, so you have no right to call this guy a n00b.} I think it was mozzer :D
ghost 17 years ago
You know, in a way I don't feel sorry for HBH. Not because I don't care or anything, its because this has happened to HBH so many times in the past. Instead of asking members to change there passwords why don't you come up with a way of securing there information a little better. I could name off a million and one ways of making it impossibly to use information gathered on HBH. You guys run a hacking site, yet you cant keep your own member information secure. I wish I was still an admin, but o well.
ghost 17 years ago
i'm with skarecrow on this one,and i also agree with insidious. anyone can download premade cms's,run them,search for exploits, and use them against public sites.code it yourself,with a team of skilled people,then,no1 has the goddamn source,and hence, hacking it,will be exponetionally more difficult.but hey… that's just me i guess.and yes,i will take a long time,but will be worth it,in many ways. :ninja:
Mr_Cheese 17 years ago
hbh has modded this site so many times its practically not even php-fusion anymore. we only keep it for the style and layout and its easy modding capabilties. and in regards to skarecrow. agreed, more effort could be taken to increase security and in the future it will be.
ghost 17 years ago
Right, darkcoder brute forced an admin account. Added an AJAX logger to the online users list and then collected the passwords. Happy? Does it matter? Mr_Cheese should have explained this but he 'didn't want to worry you that your passwords had been released' in plaintext