|
|
|
|---|---|
| -LOCKED - Recent Maintenance | |
|
Posted on 2023-03-17 10:48:40
Apologies for the recent maintenance we have had to issue, but unfortunately we noticed some suspicious activity from our admin's account, Katze. On investigation, we deduced that her account had been compromised, and we immediately put the site into maintenance mode while we explored further. We believe only Katze's account and one moderator account was affected. This was caused by someone managing to pass a script into a modbox ticket which, when viewed, would send data to this script, including session data, enabling the attacker to hijack the user's session. We have patched this vulnerability, as well as reviewed other areas of the site to ensure no other areas were affected. We have logs of everything that was viewed or attempted to be accessed. We had found that messages had been sent from Katze's account, those have been deleted, and there was nothing compromising in them so if you received one of these messages there's nothing to worry about. We have no reason to believe that anyone's personal data was affected or retrieved in any way. Additionally, Lioden does not store any payment information, as all payment processing is handled by Paypal. However, in spite of this, as a precaution we have forced a password change for all users on the site. It is best practice to make sure you use a unique password for each site you have a login on. This way, if another site you use suffers a data breach, and you don't use the same password on that site as you do on another, then your accounts on other websites remain safe. We recommend using a password manager to create and store unique passwords for every site and service you use. For now: we are bringing the site back up and things should continue as normal. Katze's account being affected means that a majority of news posts have been deleted and are currently in the process of being recovered. They should be restored soon.  1615 players like this post! Like? |
|
Report
|
☍⟟⋏☌ (#427881)
King of the Jungle View Forum Posts  Posted on 2023-03-17 12:03:21 |
lil spooky to wake up to but 100% understandable! thanks for taking care of the player base like this! 1 player likes this post! Like? |
|
Fawn.dusk (#307296)
Total Chad View Forum Posts Posted on 2023-03-17 12:03:46 |
Michael (#16)
Famous View Forum Posts Posted on 2023-03-17 12:03:53 |
"Just saying, none of the other businesses would even admit something like that happened to not cause the panic over passwords/stolen data, for safety of their users." That quickly backfires when it comes out that a company has had a data breach and users weren't informed. Just check out https://haveibeenpwned.com/ and see how many places your information has been compromised. In Lioden's case, there was no database breach and no personal data was accessed. It didn't appear to be targeted other than a script kiddy trying to find exploits. Not saying how it happened doesn't stop it from happening again. Saying how it happened, in my opinion, gives users a better sense of security knowing that we know what/where it was done, and that similar vulnerabilities have been checked for. Otherwise, people might think every page is susceptible or that they could have been susceptible to it previously (e.g., thinking that topics or dens or any other public pages were compromised when they weren't). 6 players like this post! Like? |
|
Nightshade (#253628)
Pestilent View Forum Posts Posted on 2023-03-17 12:04:14 |
|
❄️Yuki (any pronouns)❄️ (#396207) Deathlord of the Jungle View Forum Posts Posted on 2023-03-17 12:04:58 |
THE DECENIAL APP IS BUGGED WHEN YOU USE IT IT TURNS THE LION STRANSPARENT PLEASEEEEEEEEEEEEEE FIX IT Admin Response: Please keep any artwork-related bug reports to the Art Bugs subforum!
1 player likes this post! Like? |
|
Little Miss Stitch (#246386)
Toxic View Forum Posts Posted on 2023-03-17 12:06:07 |
|
Voide (#252708)
Deathlord of the Jungle View Forum Posts Posted on 2023-03-17 12:10:19 |
I’m glad everything is almost perfectly fine again .XD sadly this new roll over costed me two cubs I couldn’t feed before the lockdown and one pride member leaving but we’ll safety first ! 0 players like this post! Like? |
TattyLunaWolf (#316913)
Heavenly View Forum Posts Posted on 2023-03-17 12:12:37 |
|
GRANNY (#414221)
Deathlord of the Jungle View Forum Posts Posted on 2023-03-17 12:12:39 |
You all worked very fast to fix the issue. So glad to see that they did compromise all of Lioden. I'm sorry to hear that anyone had to go through any of this. 0 players like this post! Like? |
|
KᖇᗩᗰᗰIE (#220377)
Notable Lion View Forum Posts Posted on 2023-03-17 12:15:15 |
When I went to refresh I thought my account got banned or something 😭 ty guys sm for keeping such a close eye on all of this 0 players like this post! Like? |
|
Kiiro (✨they/them✨) (#402529) Grumpy View Forum Posts Posted on 2023-03-17 12:15:20 |
Thank you for taking user safety so seriously!!! Glad everything is well now! 0 players like this post! Like? |
|
Odibodi (#177822)
Total Chad View Forum Posts Posted on 2023-03-17 12:17:52 |
Damn, that's a bit scary-I hope Katze is ok and everything on their account is safe now! 0 players like this post! Like? |
|
L A V E N D E R (#406819)
Untitled View Forum Posts Posted on 2023-03-17 12:20:34 |
Oh no! Good thing this was taken care of before it could ruin things even more than it already did.  0 players like this post! Like? |
|
🌅 Sunset 🌅 (#409889)
Evil View Forum Posts Posted on 2023-03-17 12:21:37 |
|
Ozelotchen [G2] (#365231)
Mean View Forum Posts Posted on 2023-03-17 12:22:57 |
Topic is locked
Memory Used: 641.77 KB - Queries: 2 - Query Time: 0.00084 - Total Time: 0.00628s