There appears to be a group targetting vBulletin users with hack attacks, particularly those using lower than 2.01 versions. Unfortunately vBulletin has been of little assistance in dealing with this security issue, particularly for those who paid for past installation upgrades.
My board has been hacked three times. I've now temporarily closed it. Emails to vBulletin have resulted in "Pay $135 to us and we'll upgrade you from vBulletin beta to 2.0.1." They specifically stated to me in my support request, "I'm afraid that the initial
installation service pays for a single installation only -
the price does not include future updates."
When there is a serious security issue with vBulletin software, those who paid for installation of the version that has the major security flaw should be automatically upgraded to the secure version.
Hackers are now logging into forums that have these security issues then taking control of admin functions and printing messages from the administrator that contain elaborate details on how to hack the forums and destroy them completely.
Up until now I have always been very impressed with the vBulletin product and customer service. But when I'm in the middle of a crisis brought on by a security hole with their software, I do not want to be told "pay $135 for the upgrade package and we'll fix the problem." That just creates a whole new set of problems.
Joe Tracy
My board has been hacked three times. I've now temporarily closed it. Emails to vBulletin have resulted in "Pay $135 to us and we'll upgrade you from vBulletin beta to 2.0.1." They specifically stated to me in my support request, "I'm afraid that the initial
installation service pays for a single installation only -
the price does not include future updates."
When there is a serious security issue with vBulletin software, those who paid for installation of the version that has the major security flaw should be automatically upgraded to the secure version.
Hackers are now logging into forums that have these security issues then taking control of admin functions and printing messages from the administrator that contain elaborate details on how to hack the forums and destroy them completely.
Up until now I have always been very impressed with the vBulletin product and customer service. But when I'm in the middle of a crisis brought on by a security hole with their software, I do not want to be told "pay $135 for the upgrade package and we'll fix the problem." That just creates a whole new set of problems.
Joe Tracy
Comment