The account owner has confirmed they did not access the admin console to perform these actions. It also downloaded existing nightly full-backups of the database. The account was used to create database backups which were then downloaded and deleted. MyBB admin logs show the account of a trusted but currently inactive member of the forum admin team was used to access the web-based MyBB admin console twice: on 16 February and again on 21 February. This post confirms that a breach has taken place. In the last 24 hours we became aware of a dump of the Kodi user forum (MyBB) software being advertised for sale on internet forums. If you need help while we recover/rebuild the systems, a March snapshot of the Wiki can be found on the Internet Archive here, and a read-only April copy of the forum here.
0 Comments
Leave a Reply. |