It is currently 16-12-2017 12:17

A vulnerability in vBulletin led to the data breach of 25 million users subdomains Mail.ru

A vulnerability in vBulletin led to the data breach of 25 million users subdomains Mail.ru

by sigismund » 2016-08-25 12:31:11


Password protected, only using MD5 and decrypt it will not be difficult.


A vulnerability in the vBulletin engine that allows SQL-injection, once again became the reason of data leakage. This time the victims of hackers were about 25 million users subdomains Mail.ru. As reported LeakedSource, the responsibility for the incident lies with the two unknown intruders.

More specifically, the victims of the leak 12 881 787 users cfire.mail.ru, 5 029 530 users of the gaming website parapa.mail.ru (play), 3 986 234 user forums parapa.mail.ru and 3 236 254 user tanks.mail.ru. As a result of attacks carried out in July-August of the current year, the intruders managed to steal names, hashed passwords, email address and date of birth.

Because the credentials are only protected using MD5, decrypt them will not be difficult. LeakedSource experts have restored a large part of the passwords and presented the ranking of the most popular and unreliable of them. The most common password is 123456789 (263 347 times), followed by 12345678 (201 977 times), 123456 (89 756 times), 1234567890 (89 497 times), qwertyuiop (32 584 times) 123123123 (31 268 times) and 11111111 (30 827 times).

We will remind, recently there have been a number of attacks exploit a vulnerability in vBulletin. Recently victims of data breaches have become fans of the game Grand Theft Auto. In addition, this week for the same reason, the network leaked the data of more than 800 thousand users of the Epic Games forums. Even before hackers managed to crack the developer's forum Dota 2 forum Clash of Kings, a gaming website DLH.net and a forum dedicated to Ubuntu.
sigismund
moderators
Сообщений: 788
Депозит: 0 BTC

Rating: 5