Welcome to The Forum

Register now to gain access to all of our features. Once registered and logged in, you will be able to create topics, post replies to existing threads

[Psa] We're Back, New, Improved And With Extra Brains!


->SK<-
 Share

Recommended Posts

Hello to all fellow caders! SKay relaying from my designated safehouse with a nice message (sorry, still not accepting admissions)

 

We're back! Everyone rejoice! Unless you're dead, then in which case you can... uhh... celebrate spiritually?

 

We were hacked? But how?!

 

While not divulging too much detail, lets get to the nitty gritty of what happened. As many of you suspected, yes, we were indeed maliciously hacked and unauthorized access to our bits, bobs and otherwise was granted. Over the last two days myself and others have worked round the clock to getting this attack under control, quarantined and vaccinated. While we cannot 110% guarantee that this won't happen again, we have taken steps to make sure our forum is a lot more secure, and have passed it on to the average user who may be security conscious.

 

Two-factor Authentification.

 

You may have noticed that we enabled 2FA for all users of our forum. This second step for authentication has increased the security of our forum and backend to no end, and will effectively demonstrate that we take the privacy of your data and the security of it very seriously. Now in plain good 'ol heinsight, this should've been brought in a lot sooner as in the post-NSA world that we live in, data security is a BIG thing, especially for average Joe. But heinsight is always a cruel mistress, and we would rather not lament about the past and not learn anything, but rather we would take steps to make sure the chances of this happening again are nearly nil.

 

Force-Field Emitters

 

So to reward you for being so patient with us, we've decided to temporarily disable Force-Field Emitters from the main ZS server. Why have we done this? Well it's just easier to remove them and make sure they are completely 100% balanced before being re-released out to the wild. We don't want another period of these things causing so much hassle than they're worth, and zombies dropping off faster than a pallet of bricks.

 

That's it for now! Stay tuned for anything else that may crop up!

 

-SKay

  • Like 3
Link to comment
Share on other sites

Is there a reason why you've enabled 2FA but left out HTTPS?

 

I would argue that an HTTPS encryption is also a must have, especially as google will start cracking down on servers that don't have it enabled.

 

http://www.zdnet.com/article/google-chrome-gets-ready-to-mark-all-http-sites-as-bad/

 

That said, as a cloudflare customer, it should be extremely easy to setup even a "fake" HTTPS connection that would encrypt the connection between the user and the Cloudflare CDN. The connection between Cloudflare and the HG backend would still be unencrypted, but would offer much better security than an unencrypted connection all the way through.

Link to comment
Share on other sites

"Hacked"

Who was the member of leadership with a shit password?

Can we get a forum ban for correcting grammar please.

Stop disrespecting people fag.

Edited by Icon315
  • Like 2
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share