We're back - unexpected forums outage

Status
Not open for further replies.
Janet H

Janet H

Give me a museum and I'll fill it. (Picasso) Give me a forum ...
Site Team
Joined
Feb 6, 2007
Messages
6,277
Location
Pacific NW
An exploit in our software was taken advantage of by some hackers who linked to a malicious site. It appears there was a little over 4 hours between the time it happened and the time we took the servers offline Thursday.

In an effort to minimize damage to the board we opted to shut everything down while we investigated the issue and formulated a game plan. Our team (server admins, programmers, and software vendors) coordinated and developed a plan to remove the malicious files and secure the servers. We believe that forum members should not have any system issues associated with this so long they didn't visit the malicious site AND install anything.

While the service interruption was unfortunate, it was important to us to make sure this issue was fully addressed before returning to business as usual. Protecting our community from this kind of intrusion is paramount and we'll post more info here as it becomes available. It's possible that we may need to continue tweak the forum setup and if so, we may have another service interruption.

We thank you for understanding :flowers:
 
Well handled- and appreciated the temporary posts as you moved through it. I hope you find the pranksters! And I hope they never get to FIRE
 
It wasn't just this forum. I got the same offline message from the irv2.com forum I frequent. They seem to run similar forum software.

Aaaaah - I see they have the same Janet H community administrator!

Audrey
 
Audrey, if you look in the lower left corner of the page, you'll see the list of all of Andy's Social Knowledge forum communities. I believe all of them were involved with the hacking incident.
 
Janet H said:
An exploit in our software was taken advantage of by some hackers who linked to a malicious site. It appears there was a little over 4 hours between the time it happened and the time we took the servers offline Thursday.

In an effort to minimize damage to the board we opted to shut everything down while we investigated the issue and formulated a game plan. Our team (server admins, programmers, and software vendors) coordinated and developed a plan to remove the malicious files and secure the servers. We believe that forum members should not have any system issues associated with this so long they didn't visit the malicious site AND install anything.

While the service interruption was unfortunate, it was important to us to make sure this issue was fully addressed before returning to business as usual. Protecting our community from this kind of intrusion is paramount and we'll post more info here as it becomes available. It's possible that we may need to continue tweak the forum setup and if so, we may have another service interruption.

We thank you for understanding :flowers:
Click to expand...

RATS! Foiled again...:angel:
 
bizlady said:
Well handled- and appreciated the temporary posts as you moved through it. I hope you find the pranksters! And I hope they never get to FIRE
Click to expand...

+1 it was really nice to get the feedback. It is appreciated. Without that, I might have gone around checking my bookmarks, wondering if I had something messed up on my end, wondering when I should check next, etc.

Small thing that makes a big difference.

Thanks - ERD50
 
ERD50 said:
+1 it was really nice to get the feedback. It is appreciated. Without that, I might have gone around checking my bookmarks, wondering if I had something messed up on my end, wondering when I should check next, etc.

Small thing that makes a big difference.

Thanks - ERD50
Click to expand...


I agree. Well done.
 
When I tried to go to the site yesterday late morning and got a Google warning that the site was unsafe, I knew something was up!

Coincidence that we had just been discussing what the Bunny might be up to lately? KIDDING!
 
Anyone here a member on Whistlestopper Forum? I have been unable to accesses that forum for a week now. Could it be the same problem?
 
A big thanks to all those involved in dealing with the break in. Putting up that temporary page with updates was excellent.

For me it was a whole evening without access to the Forum and I was starting to get the shakes, so it's good to see it back today.
 
I agree. Good job on the communication. After a career in Megacorp computer security it was a nice change to see something besides denial and fingerpointing. :LOL: Unless, of course, there WERE no Russian hackers...
stor16.gif
 
Status
Not open for further replies.

Similar threads

Janet H
Forum Update - We're back! Ask your questions here.
6 7 8
Replies
183
Views
4K
donheff
donheff
Janet H
Forum Downtime - software update scheduled April 23/24
2
Replies
36
Views
1K
Out of Steam
Out of Steam
W
GEHA unable to provide status of claim
Replies
7
Views
418
Tadpole
Tadpole
Janet H
Mobile App Changes
2 3
Replies
54
Views
7K
tulak
T
jollystomper
Built a NAS server after NAS-ty installation experiences
2
Replies
28
Views
771
The Cosmic Avenger
The Cosmic Avenger

Latest posts

Back
Top Bottom