Website...*sigh*

[jyllana]

So we were hacked this morning.  Awesome, eh?

It looks like a recent batch of vulnerabilities to the forum software we use, and a patch to fix them were posted within the last several days.  I had not seen the update and not surprisingly didn't have a chance to patch it yet.  As far as I can tell the index.php file was replaced with a page containing malicious code.  Looking over the code that was posted, it seems that it's targeted at IE.  If you use IE (and just to be safe, probably everyone in general) and visited the site while it was hacked, I strongly recommend that you run a virus scanner on your machine.  As far as I can tell the database and our data were not compromised.

The website's going to look like a basic forum for a day or two while I rebuild things.  The index.php contains a lot of the interaction between the forum and the portal...so it being hacked and subsequently replaced by an old version basically breaks the portal portion of the website.  The fix is likely a reinstall of the portal and possibly the forums.  I'm hoping that shouldn't be too terrible as the database is fine, but still it may take a couple days for me to get everything worked out.

Your patience is appreciated and I apologize for any inconvenience this causes anyone.

[Nugget]

People still use IE?
 

[Liwanu]

but I can actually see people's pictures now! lol

[Bryn]

I'd change your passwords on other sites if they are similar to this one anyway, just to be on the safe side.

[jyllana]

So.  In reality, the entire host was hacked not specifically our site.

They're suppose to be restoring the folder containing the portal/forum to the way it was prior to the hack.  If that doesn't happen I'll be manually reinstalling everything later in the week.