Aug 4th, 2021, 04:50 PM
Last night, an attack was executed against the forum. At this time, I am aware of the following things having occurred:
Considering no other user was compromised, at this time I do not have reason to believe that user data such as passwords were exposed. Despite that, I recommend anyone who feels uneasy to change their password on here, and on any other service that shared that same password.
It is likely the attack occurred due to a malicious script that was executed via a vulnerability. I do not know if the attack was specifically targeted for us, or if we just unfortunately entered the cross hairs of someone scouring the internet with ill intents.
I will try my best to prevent this happening again, and I apologize that everyone here has had to be exposed to this incident.
- ShiraNoMai's account was compromised. Her username, password, email, and profile were changed. I am not currently aware of any other account being compromised in any way.
- The site rules and marketplace threads were defaced. These have been restored to their original versions.
- A singular announcement containing the same content as the aforementioned threads was made using Shira's account. That announcement has been deleted.
- Strangely, Maniakkid25's account was gifted a large number of UG Cards, of which I have removed.
- A singular PM was sent to Maniak's account from Shira's account. No other user was messaged.
- Shira's account subscribed to 57 threads, because the attacker apparently wanted to be notified of new reading material.
Considering no other user was compromised, at this time I do not have reason to believe that user data such as passwords were exposed. Despite that, I recommend anyone who feels uneasy to change their password on here, and on any other service that shared that same password.
It is likely the attack occurred due to a malicious script that was executed via a vulnerability. I do not know if the attack was specifically targeted for us, or if we just unfortunately entered the cross hairs of someone scouring the internet with ill intents.
I will try my best to prevent this happening again, and I apologize that everyone here has had to be exposed to this incident.