Anyone else got the "Hi ya allll !! w000wwwooooo" spam flood recently on their 3.x forum?
Looks like it's being suggested there may be a vulernability in the build and that there may be a flood to follow:
http://www.techwatch.co.uk/2011/05/0...s-vbulletin-3/
Is this really an issue specific to 3.x though? Anyone seeing this in the 4.x version?
Looks like it's being suggested there may be a vulernability in the build and that there may be a flood to follow:
http://www.techwatch.co.uk/2011/05/0...s-vbulletin-3/
it suggests that spammers have found a way to crack the custom question feature that helps reduce automated registrations by spambots.
The behaviour so far is similar to previous mass test runs by Xrumer, which uses unique user strings with the same spam message to test how effective new cracking features work.
While so far the spam has been sent from just one IP address to date, the danger is that if this is a new crack, that forum admins, especially on older vbulletin installs, could shortly face a new wave of spam as typically follows a security breach test.
The behaviour so far is similar to previous mass test runs by Xrumer, which uses unique user strings with the same spam message to test how effective new cracking features work.
While so far the spam has been sent from just one IP address to date, the danger is that if this is a new crack, that forum admins, especially on older vbulletin installs, could shortly face a new wave of spam as typically follows a security breach test.
Comment