Group attacks online forums using login data stolen from earlier hack on their vendor

vBulletin was breached by intruders who stole customer passwords and other personal information, a malicious operation that now threatens websites running the widely used program.

Already, the MacRumors forum has been penetrated.  

On Nov. 18, vBulletin Technical Support Lead Wayne Luke said in a statement: "These hackers were able to compromise an insecure system that was used for testing vBulletin mobile applications. The best defense against potential compromises is to keep your system running on the very latest patch release of the software."

vBulletin first notified clients about the incident on Nov. 15: "Very recently, our security team discovered sophisticated attacks on our network. . .Our investigation currently indicates that the attackers accessed customer IDs and encrypted passwords on our systems. We have taken the precaution of resetting your account password."

Members of the Inject0r hacking team published this Facebook post claiming they were behind the MacRumors compromise and saying they carried it out by using credentials for a moderator account taken during the vBulletin assault.

“On Sunday night, Kim of MacRumors confirmed to Ars that the user name and password for the compromised moderator account were, in fact, the same ones the account holder used on vBulletin.com,” the publication reported.

ThreatWatch is a regularly updated catalog of data breaches successfully striking every sector of the globe, as reported by journalists, researchers and the victims themselves.