Thread: Board4all
View Single Post
  #25  
Old 12-06-2022, 22:34
SockPuppet SockPuppet is offline
Friend
 
Join Date: Sep 2018
Posts: 28
Rept. Given: 0
Rept. Rcvd 4 Times in 2 Posts
Thanks Given: 7
Thanks Rcvd at 75 Times in 21 Posts
SockPuppet Reputation: 4
Board4All Downtime Announcement

The admins of Board4all are not very transparent about the actual reasons.
On the 20th Of October, 2022 they put up an announcement notice. The body of that notice reads:

Quote:
"Unfortunately, last week our server was compromised due to a loophole in the VNC, this was detected by the team quite quickly and the server brought offline. During the offline period we analysed the server files and logs, and later notified the host of this vulnerability so it does not happen to any of their other customers moving forward. We changed all passwords, obtained a new IP address (previously exposed by the MX / TXT domain records), changed access ports and pretty much changed everything that could have been obtained for the short time they had access.

I would like to add that there is nothing on the host vnc logs or server side logs to suggest any data loss but as with anything internet, you cannot guarantee 100% it did or it did not. However, if it has happened then it is a sad day for the team but as with everything, we move on and learn from it. However, what I will add is the actual person responsible spoke to me and informed me of how he got in so that the vunerability could be resolved - this has to be a positive thing and maybe nothing malicious was attempted while he connected and he was merely pointing this out.

Emails
As mentioned above, we previously used our own internal mail servers that sadly required us to expose the actual servers IP address in the domain record. Moving forward we will using a trusted external provider for any forum mailing. However, for a short period you will not receive any emails from the forum while we set this up.

Anyway, it is what it is, nothing we can do about it now since it has already happened.. we learn from it and move on."
You can view that screenshot here: Downtime Announcement Screenshot
I have also attached the screenshot of that notice to this post.

This notice was viewed by nearly all the active members of the forum before it was silently taken down a couple of days later.

So according to the Board4All forum staff, there was a VNC server running on the hosting server which had vulnerabilities. This means that effectively, if anyone exploited that VNC server, they would have remote access to that hosting server!

Everyone thought it strange that the notice was silently taken down and then the staff pretended that everything was fine. After that, the forum went down for another 21 days without any updates from the forum staff.

Subsequently the Board4All staff deleted even their Discord server silently.

All this is known and confirmed by the regular visitors to the Board4All forum.

Anyway it appears to be rather clear that there have been several significant compromises to the forum security, that the forum needed to be offline for over 21 days.

Prior to the 21 days, the forum was also offline TWICE or a week each time the month prior, for which the forum staff cited DDos attacks as the reason.
That screenshot can be viewed here: Board4All DDos Attacks
I have also attached that screenshot as well to this post.
Attached Images
File Type: png Downtime notice.PNG (69.8 KB, 7 views)
File Type: png Challenger-Admits-To-Hack.png (30.4 KB, 11 views)

Last edited by SockPuppet; 12-06-2022 at 22:44.
Reply With Quote
The Following 5 Users Say Thank You to SockPuppet For This Useful Post:
BasePointer (12-11-2022), Max (01-02-2023), Mendax47 (12-07-2022), phroyt (12-09-2022), Stingered (12-06-2022)