0131 560 1790 0131 560 1790

Major vBulletin Software Flaw Leaves You Vulnerable to Hack Attack

One of the most popular providers of online discussion software is reeling after a serious flaw was discovered by AV forums and reported on the BBC News website last night. The issue means that it is remarkably easy for someone to access the username and password of any individual using the software and to access data on the user. The firm is now hastily trying to remedy the horrendous problem with a patch but the real problem is for people as yet unaware of the problem that are still to update their software with the crucial fix. Internet Brands has been telling its vBulletin users through emails and on their control panels but it seems they were very slow off the mark as third party firms were first on the spot with a warning and a solution.

The flaw effects version 3.8.6 of the software which was available from 13th July meaning it has been a virtual open door for over a week. vBulletin was conceived in 1999 but was sold to Internet Brands in 2007. Internet Brands are yet to comment on the fault.

Since the acquisition of vBulletin it has not been plain sailing for Internet Brands:

  • July 4th 2007 – Jelsoft acquired by Internet Brands. Admin section of vBulletin.com became accessible by the public for 13 minutes revealing company pricing plans.
  • Oct 13th 2009 – 200% price increase for the service which somehow offered customers who were least invested in the product, the most cost effective deal.
  • Oct 23rd 2009 – vBulletin 4 software launched but site is suddenly down for 28 hours and unreliable for days after and for the next couple of months a succession of fixes is brought out.
  • Dec 22nd 2009 – vBulletin 4.0 Gold released. Many feel it was released before it was a stable product in order to meet a release schedule. What followed was a myriad of faults and updates and more faults and further updates.
  • July 21st 2010 – critical security flaw in vBulletin v3.8.6 uncovered.

Since the acquisition it seems there has been no end of complaints and fiascos blighting Internet Brands. Maybe this is a sign that concentrating on making money and forgetting about pleasing or even meeting the needs of your users is the wrong way to go. It seems the integrity and talent that had built the vBulletin brand jumped ship in a classic management failure case study type deal and may well have been the reason for vBulletin’s drop in overall quality of service.

This post on vBTruth.com has some reason for why the core vBulletin staff exodus happened. And this post on thelawprofessor.com offers a legal point of view on the vBulletin’s current issues.

Do you think it is too easy for ‘new media’ companies to snap up good smaller companies in vertical markets? Can you think of a solution to this problem?



You may also be interested in:

  1. Google On The Lookout for Malicious ‘Anti-Virus’ Software We look at a worrying trend in malicious fake anti-virus software and detail some tips to keeping you safe....
  2. Major Twitter Disruption Major disruption was caused to Twitter accounts around the world when a music lover stubbled across a glitch, making it...
  3. Google to release Ranking Checking Software? Are Google planning on releasing software to check your rankings? This would be a great time saver and less strain...
  4. Cozy Digital Launches New Transparent SEO Software Service Cozy Digital are proud to announce the release of their new Cozy Digital SEO Labs service which will provide users...
  5. Google Padlocks Search Google increases security by offering a secured web search option....

You can follow any responses to this entry through the RSS 2.0 feed.