03-10-2018, 12:49 AM
Hey everyone,
Recently I joined to SM64Hacks Team as a Security Engineer. Today we are disclosing a potential compromise of the forum's database and other files.
Actions taken:
Since we noticed the compromise we' have done the following.
We want to prevent this type of issue from ever occurring again. So we're taking the following actions to better protect the site.
We highly recommend users change their SM64Hacks password as well as their password on any websites using the same password (terrible idea please use a password manager like everyone else)
Recently I joined to SM64Hacks Team as a Security Engineer. Today we are disclosing a potential compromise of the forum's database and other files.
Actions taken:
Since we noticed the compromise we' have done the following.
- Moved to more secure server provider
- Enabled HTTPS
- Audited the filesystem for tampering
- Changed administrative passwords
- Audited scripts for potential security issues
- Patched outdated PHP software
We want to prevent this type of issue from ever occurring again. So we're taking the following actions to better protect the site.
- All staff and admins will be educated on industry standards to protect againist cyber attacks
- Human and automated actions will look for compromise attempts and prevent them.
We highly recommend users change their SM64Hacks password as well as their password on any websites using the same password (terrible idea please use a password manager like everyone else)