DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

In September, VMedia notified members of a vBulletin 0day

Posted on November 9, 2019 by Dissent

Today I learned from one of my readers that VMedia had a breach that they had disclosed back on September 25, but it apparently wasn’t picked up by media outlets until October 31. The following is the notice from their website. The media coverage is in French.

On September 25, 2019, vBulletin message boards experienced a zero day attack, which resulted in our community being redirected to a 3rd party website temporarily.

Subsequently, we promptly took our community forum offline, as we reviewed this exploit and considered next steps.

vBulletin has since published an official patch, which we have implemented, and our forum is back online and available once again.

We consider the privacy and security of our customers’ paramount, and want to be transparent and forthcoming with regard to which data may have been compromised, as a result of this exploit.

It is possible that our vBulletin database was compromised, which includes the account information of our community members.

Specifically, user email addresses, passwords, birthdays, and location details may have been vulnerable.  While vBulletin encrypts stored user passwords, other user entered information is not encrypted, and may have been compromised in this attack.

We would strongly recommend updating the email address and password used to access our community forum in your account settings.

Additionally, any user account changes made after June 2019 (password, email) have been lost, and accounts have been returned to their previous state.  If you updated your email or password after June 2019, please login using your former credentials and consider adjustments accordingly.

More details available here and here.

We apologize for the inconvenience and thank you for your patience and understanding.

Category: Business SectorHack

Post navigation

← Senator Warner wants to know what HHS OCR did in response to massive leak of patient medical images by organizations
Data breach put thousands of Florida Blue members’ personal information at risk →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Evoke Wellness to Pay $1.9 Million to Settle FTC Claims That They Misled Consumers Seeking Substance Use Disorder Treatment
  • Former Hilliard treatment center employee accused of selling patient data on dark web
  • Trump Rewrites Cybersecurity Policy in Executive Order
  • AMI Group – Travel & Tours notice of ransomware attack
  • Resource: Insider Threat reports
  • Za: Cyber extortionist sentenced to eight years in jail
  • ICE takes steps to deport the Australian hacker known as “DR32”
  • Hearing on the Federal Government and AI
  • Nigerian National Sentenced To More Than Five Years For Hacking, Fraud, And Identity Theft Scheme
  • Data breach of patient info ends in firing of Miami hospital employee

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Privacy Victory! Judge Grants Preliminary Injunction in OPM/DOGE Lawsuit
  • The Decision That Murdered Privacy
  • Hearing on the Federal Government and AI
  • California county accused of using drones to spy on residents
  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.
Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report