IMPORTANT: Community security breach

[bristol]

Yes, associated email addresses were obtained as well. It's in the user table.

Bummer. Can you please delete my account. I don't use your SMF software.

[Hasanudin]

 OMG..

[Johanvd]

Did the attacker have more access on the simplemachines site or was it limited to just the forum database?
Could he make changes to any packages at download.simplemachines.org?
Are the mods, themes and other downloads still safe?

[NanoSector]

Did the attacker have more access on the simplemachines site or was it limited to just the forum database?
Could he make changes to any packages at download.simplemachines.org?
Are the mods, themes and other downloads still safe?

Only the database should be gathered, downloads shouldn't be damaged. If you are worried, do scan the files with your antivirus, if you have one.

[LiroyvH]

Downloads are isolated and just fine

[Ckemoi]

my password is changed

[Deaks]

johanvd those are stored elsewhere, the logs show that downloads and customise were not effected.

[elliatt]

Admins -

Thank you for the notification and for what you are doing behind the scenes. Someone made a mistake, it happens.  Heaven knows I have made more than my share 

Take a break, have a cold one and grab a few moments to relax.

[ApplianceJunk]

Thanks for the information, changed mine also thanks Antes for the message he just sended me

That raises my curiosity, did you not get our email?
We did send out a notification, so please let me know if you received it. It's very important people receive it.

Thank you

I never received a email about this. Just happen to see the post on my own this morning.

[ApplianceJunk]

Ouch, this sucks. Glad you guys caught the issue quickly. Changing passwords even if I do use different ones.

I did the same, great minds think a like.

[Johanvd]

Downloads are isolated and just fine

johanvd those are stored elsewhere, the logs show that downloads and customise were not effected.

Thanks!

Also thanks for your hard work to solve this.

[cyberjack]

Same topic, similar e-mail is received from Ubuntu.

http://ubuntuforums.org/announce.html

[nend]

My password here is different than my others.

Makes you wonder how beneficial the db dump in the admin panel is. If you think about it, if it wasn't there then none of this would of happened... Makes me think about disabling mine since I back up my db differently.

But then again they could just upload a mod and get a dump, convenience looks to be a security issue. :-/

[Kindred]

nend... sorry, but you're wrong.
The hacker did not access the database from the admin panel backup option.
(that option would likely choke on the size of our database anyway)

[nend]

nend... sorry, but you're wrong.
The hacker did not access the database from the admin panel backup option.
(that option would likely choke on the size of our database anyway)

I guess I can be since I assumed how it happened.

[FrizzleFried]

FWIW - I... the "Drama Queen"... see no benefit what so ever of outting the admin who made this mistake.  We are all human and dumping on the guy (or gal) serves no good purpose.

[The Craw]

Sorry Micky, your GT5 cheats, Modern war, signature is telling your 15 years old kid story. Unfortunately this is a serious discussion, talking about serious facts. Allow yourself to grow up. See ya in 2015! Eat your corn flakes!

Just a quick side note to defend a friend of mine, you can own gaming forums without being a kid. Mike is married and has a son in the US Air Force, so that makes him older than 15.

[TimL]

How to I delete my account.  I prefer that option over having this happen again which I find inexcusable. 

[IchBin™]

Go into your profile and select the option from the profile menu to delete your account.

[Chalky]

Though this forum is probably the most secure place to be now