Just came across this, which is some mayor news. phpBB got hacked over the course of a couple of weeks the hacker had secretly gained control of the system. All user email addresses, username and passwords have been stolen. All webmasters registered to tha forum should probably change their passwords if hey were using he same one. Read all about in phpbb:http://www.phpbb.com/community/viewtopic.php?f=14&t=1436615&sid=8866bc8d712770b22e0975676ba6368e And on the site of the hacker himself: http://hackedphpbb.blogspot.com/2009/01/place-holder.html Hope your not one of the webmasters that will have to get to work on their passwords.
Oh shoot. I just saw the prior post on this subject be bumped to the first page. Sorry for this duplicate post guys!
I think I was lucky, while running two phpBB forums I never registered on their support forums and never signed in fro theri newsletter. Just checked all my emails to be sure... Pfeew! I wander if they will try to get to the hacker?? If that doesn't work I hope they will try to by those email addresses back. Judging fro his blog post he kinda sounds like a reasonable guy that was just doing it for fun and to prove he could!
They where just running an 'outdated' email script. It wasn't the phpbb software that was vulnerable so to all those people thinking their sites are open to be hacked are wrong
Yup this is correct. They were running on a out dated version of "phplist" partly their own fault for trusting 3rdparty software, especially such a widely used software including a large user base.