I got an email today:

The following is an email sent to you by an administrator of "KORUPTION OWNZ YOUR S****Y SITE". If this message is spam, contains abusive or other comments you find offensive please contact the webmaster of the board at the following address:

korupted@korupted.com

Include this full email (particularly the headers).

Message sent to you follows:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Dear members. Your petty website has been hacked. The hacker's name is Koruption. Next time dont use a outdated verison of phpbb b***hes

So im a bit pissed off and check my forum at http://krap.trap17.com/forum
Everythings fine. Nothing different at all. Bit stupid sending me that email when they didnt even hack it.......

I moved it here because this is a security issue, not php progrEven though the fix is php programming.

So everyone make sure you have latest version and check your log files

Nils

Check if you still got admin rights and that no admin has been added and update to latest version (2.0.13)
For extra security of your phpBB2 board you can download the phpbb-security mod/hack by aUsTiN --> phpbb-tweaks.com

Greetz,
Rik©

They are not hackers, they are LAMERS, script kiddies.

I think he meant that they sent him this email not even from the board address, but just kind of as a prank..

but if it did come from the site/board address.. then you may very well have been hacked, and as everyone else said, check your logs, update.. and make sure no admins(or mods!) have been added. i would say check the privledges of the last 20 new members or so.

Yeah i remember this whenever i went to the phppb homepage it said it had been hacked by a groop of hackers.
Is the site fixed yet?

Like Haron said, we are dealing with nothing more than script kiddies here.

I mean... What kind of a lame person actually sends an email to the owner of the site that he is trying to "hack"???

Anyway, I can still see that you are using phpBB 2.0.11.
I RECOMMEND that you upgrade to 2.0.13 as soon as possible!
(Trap17 cPanel does not offer it yet, but you can download the changed files from www.phpbb.com, and replace the old ones in no time, like I did on my forum: http://forum.suwifi.trap17.com).

The newer versions have an updating system, so when you log in to your administrator panel, phpBB will automatically check for newer versions available.

I repeat: Anybody that knows how to use a DOS command prompt, can run an phpBB exploit and gain administrator rights on your forum!

Of course, you should backup your forum database regularly.

For instance if begin the problems, that forum it is necessary to update! PHPbb over and over again broke and without letters!

im not really bothered with that. ive only got 28 members.
Im sure anyone who hacks it is really sad as it's such a small site so they would earn no "respect" for it..
If someone hacked Google for instance they would be known as a hacking god among hackers(or a w**ker among me and loads of other people )
But for my site I dont think the same thing would happen.
I'm sure they would rather hack a busy site and cause disruption..

I cant be bothered to change to 2.13 or whatever it was- it probably has security holes so when someone finds them I'll need to upgrade again.
@php releasing two releases in two days.