Hi guys, sorry that the FreeBSD Forums were offline for a couple of hours.
We were hit by an exploit against a slightly outdated XenForo version that we were still running.
The same exploit hit quite a number of XenForo installations today, including linux.org.
The FreeBSD Forums showed a defacement page for a couple of minutes before it was detected by the admins and then skillfully removed, after which the XenForo software was updated.
In the meantime the FreeBSD organization decided to take our DNS record offline, in case we were possibly spreading malware, which did not appear to be the case.
After some investigation, the defacement was labeled a low-hanging-fruit type of script kiddie attack that only scratched a little bit of the surface of our installation. Nothing on the actual server was in any way touched, altered, or otherwise compromised, including databases and credentials.
Resulting discussions and forensics took a couple of hours to complete, after which the DNS record was reinstated and the FreeBSD Forums were reachable once again.
We apologize for the inconvenience, and we will be slightly more diligent in keeping up with our forum software versions..
If you are still, in any way, shape or form, concerned about your credentials, feel entirely free to change your password and, more importantly, to turn on Two Factor Authentication on your account. Also note that we now support PassKeys!
We were hit by an exploit against a slightly outdated XenForo version that we were still running.
The same exploit hit quite a number of XenForo installations today, including linux.org.
The FreeBSD Forums showed a defacement page for a couple of minutes before it was detected by the admins and then skillfully removed, after which the XenForo software was updated.
In the meantime the FreeBSD organization decided to take our DNS record offline, in case we were possibly spreading malware, which did not appear to be the case.
After some investigation, the defacement was labeled a low-hanging-fruit type of script kiddie attack that only scratched a little bit of the surface of our installation. Nothing on the actual server was in any way touched, altered, or otherwise compromised, including databases and credentials.
Resulting discussions and forensics took a couple of hours to complete, after which the DNS record was reinstated and the FreeBSD Forums were reachable once again.
We apologize for the inconvenience, and we will be slightly more diligent in keeping up with our forum software versions..
If you are still, in any way, shape or form, concerned about your credentials, feel entirely free to change your password and, more importantly, to turn on Two Factor Authentication on your account. Also note that we now support PassKeys!