Bot hacking targeting phpBB, xenforo and others

Do not post support requests, bug reports or feature requests. Discuss phpBB here. Non-phpBB related discussion goes in General Discussion!
Anti-Spam Guide
Post Reply
User avatar
nl1sms
Registered User
Posts: 142
Joined: Wed May 25, 2005 4:24 pm
Location: Holland

Bot hacking targeting phpBB, xenforo and others

Post by nl1sms »

I saw a topic on phpbb.nl and would like to post it here as it could effect phpBB ?

Is this a hoax or is it genuine? To me it looks like a hoax as bots have read only rights. Can someone tell more about it ?
Since 3 January 2021 there is a bot targeting some platforms:

Xenforo 1.5x
Xenforo 2.x
Wordpress
phpBB
IPS Community Suite

The bot enter in accounts and sometime change passwords.

IP- 178.137.16.56
Email - leonsio@gmail.com

Search for this IP in your forum to check if your forum has been targeted.


At this moment i dont know how the bot have the login data for the account users.


References over internet:
https://www.abuseipdb.com/check/178.137.16.56
Source: https://xenforo.com/community/threads/b ... rs.189792/
User avatar
KaileyT
Community Team Member
Community Team Member
Posts: 2899
Joined: Mon Sep 01, 2014 1:00 am
Location: sudo rm -rf /
Name: Kailey Truscott
Contact:

Re: Bot hacking targeting phpBB, xenforo and others

Post by KaileyT »

Interesting that they don't mention what version of WP, phpBB or IPS is affected.
nl1sms wrote:
Wed Jan 06, 2021 3:41 pm
To me it looks like a hoax as bots have read only rights
Wrong type of bot. ;)
Kailey Truscott - Community Team
User avatar
Forex Station
Registered User
Posts: 117
Joined: Thu Apr 06, 2017 2:26 pm
Location: Australia

Re: Bot hacking targeting phpBB, xenforo and others

Post by Forex Station »

nl1sms wrote:
Wed Jan 06, 2021 3:41 pm
I saw a topic on phpbb.nl and would like to post it here as it could effect phpBB ?

Is this a hoax or is it genuine? To me it looks like a hoax as bots have read only rights. Can someone tell more about it ?
Thanks for the info mate.
Proudly powered by phpBB for almost 4 years now: forex-station.com :mrgreen:
Global Alexa rank: 40,500
User avatar
AmigoJack
Registered User
Posts: 5814
Joined: Tue Jun 15, 2010 11:33 am
Location: グリーン ヒル ゾーン
Contact:

Re: Bot hacking targeting phpBB, xenforo and others

Post by AmigoJack »

nl1sms wrote:
Wed Jan 06, 2021 3:41 pm
IP- 178.137.16.56
Not that IP address, but instead
  • 178.137.16.145
  • 178.137.16.151
  • 178.137.16.199
  • 178.137.16.203
...over the years from 2011 to 2019. Not one single successful log in. Tried the following usernames:
  • FlusZessBycle
  • Imeldaadaro
  • Printableadaro
  • cictAffeddy
  • lefbeftuplE
  • xaniga
Nothing spectacular here.
  • The worst thing about censorship is ███████████
  • "The problem is probably not my English but you do not want to understand correctly. ... We will not come anybody anyway, nevertheless, it's best to shit this." Affin, 2018-11-20
  • "But this shit is not here for you. You can follow with your. Maybe the question, instead, was for you, who know, so you shoved us how you are." axe70, 2020-10-10
Post Reply

Return to “phpBB Discussion”