Site Status Update: What Happened?

[Brandon Rhea]

Hi everyone.

As many of you know, the site was down for a significant period of time this morning. The reason for this is that the site was hacked. The person who hacked the site was Bee.

We removed Bee from the staff yesterday for general inactivity as backend administrator. This was our choice. She was fired because she was no longer performing well in her role and we needed an active backend administrator. In retaliation, Bee hacked the site. Many others did as well, using IP addresses from around the world. We have proof that Bee was behind this. The culprits did not hide their tracks as well as they thought they did.

In addition to the site hack, Aberforth was personally hacked and is currently dealing with personal consequences as a result. Aberforth has been the backend admin for less than 24 hours and had no part in Bee's firing. He is not responsible for what happened in any way. Some of you have sent him hate messages about how he replaced Bee and even blaming him for what happened today. Anyone caught doing that again will be permanently banned from the site.

Bee has been permanently banned from the site. We are considering further options.

We are also taking steps to address security vulnerabilities on the site. To start with, we are working with our friend Shawn, @Sreeya's husband. Shawn is a chief technology officer (CTO) in Red Hat's Public Sector team in Washington DC, and he has worked in cyber security for 17 years. He was the one who restored the site today, and he will continue working with us for at least the time being in order to address security issues. We nearly lost 4 days worth of post, but Shawn spent the entire day restoring everything so nothing was lost. Please join us in thanking him.

To be clear: we see no evidence that anyone else's accounts were compromised or personal information stolen. We believe that only Aberforth was targetted 1) out of retaliation for taking Bee's place and 2) to drive him away so there would be no technical assistance after the hack. We will continue investigating this to make sure no one else was compromised. If it makes you feel more comfortable, you can always change your password as an added security step.

We're not going to go into detail about security steps we're taking, because we don't want that information in public, but Shawn will be doing a very thorough job.

If you have any questions, please let us know.

 

[Jabonicus]

Who is this Hacker known as BeeChan?

 

[Dune]

Wow that's so awful. I'm glad no lasting damage was done to the site, but hearts out to you @Aberforth I hope this process is as painless as possible.

Thanks for the updates and everyone's hard work :)

 

[Prudence]

THANK. YOU. SHAWN.

 

[Oncaro]

This is awesome. Truly awesome. Everyone here owes Shawn a tremendous debt of gratitude.

And it's with that in mind that I, Oncaro, Lord of Ferrets, officially, and with absolute sincerity and seriousness, motion for Shawn to be canonized as the very first Saint of SWRP! Seriously, the guy deserves it for helping us all out like this.

All who agree with me, please like my post and/or say so!

Pls.

 

[Clayton]

There was a lot of work that went into handling the situation, on Shawn's end especially and the Admin Team as a whole. I'm sorry that you guys had to sit and wait on very little information, but there wasn't much we could do until we got the site back up and this thread drafted. A big thanks to Shawn, fellow admins, and you guys for weathering this out.

Again, if you have any questions ask them here if possible.

 

[Fyremage]

Hi everyone.

As many of you know, the site was down for a significant period of time this morning. The reason for this is that the site was hacked. The person who hacked the site was Bee.

We removed Bee from the staff yesterday for general inactivity as backend administrator. This was our choice. She was fired because she was no longer performing well in her role and we needed an active backend administrator. In retaliation, Bee hacked the site. Many others did as well, using IP addresses from around the world. We have proof that Bee was behind this. The culprits did not hide their tracks as well as they thought they did.

In addition to the site hack, Aberforth was personally hacked and is currently dealing with personal consequences as a result. Aberforth has been the backend admin for less than 24 hours and had no part in Bee's firing. He is not responsible for what happened in any way. Some of you have sent him hate messages about how he replaced Bee and even blaming him for what happened today. Anyone caught doing that again will be permanently banned from the site.

Bee has been permanently banned from the site. We are considering further options.

We are also taking steps to address security vulnerabilities on the site. To start with, we are working with our friend Shawn, Sreeya's husband. Shawn is a chief technology officer (CTO) in Red Hat's Public Sector team in Washington DC, and he has worked in cyber security for 17 years. He was the one who restored the site today, and he will continue working with us for at least the time being in order to address security issues. We nearly lost 4 days worth of post, but Shawn spent the entire day restoring everything so nothing was lost. Please join us in thanking him.

To be clear: we see no evidence that anyone else's accounts were compromised or personal information stolen. We believe that only Aberforth was targetted 1) out of retaliation for taking Bee's place and 2) to drive him away so there would be no technical assistance after the hack. We will continue investigating this to make sure no one else was compromised. If it makes you feel more comfortable, you can always change your password as an added security step.

We're not going to go into detail about security steps we're taking, because we don't want that information in public, but Shawn will be doing a very thorough job.

If you have any questions, please let us know.

Thanks @Sreeya ! Your husband is a great guy for helping us.

 

[Gamov]

Tremendous thanks to you, Shawn. And my sympathies to @Aberforth. I hope your situation gets sorted as quickly as possible.

 

[Vinny]

Huge thank-you to Shawn and all you awesome people on staff. I hope everything gets worked out-my heart goes out to @Aberforth . @Sreeya yo hubby is the best. You guys are just... amazing. Super relieved to hear that you guys have everything under control.

 

[Alhon]

Thanks to all those involved; saved many, including me, many hours of creative work.

 

[Chask274]

Words can't even begin to express how thankful I (and I'm sure everyone else on this site) is for Shawn's help with this. I can't even imagine how long it took to fix this, and I'm truly grateful for everyone who helped resolve it. @Aberforth , I wish you luck with your side of things, and hope it goes well!

 

[Malon]

I've said it on Skype, but many thanks to Shawn and @Sreeya, as well as the other admins who helped manage this situation. Good work SWRP team!

 

[Black Noise]

We need to set up a gofundme page as well to buy sreeya and shawn steak gaiz.

 

[Proleptic]

Shawn is the hero SWRP needs.

 

[Green Ranger]

In the entire history of the site, I can safely say this is easily the most fucked up thing thats happened.

A big thanks to all the staff who worked on this, and especially to Shawn.

To say Im disappointed and angry about the idea of a member we trusted so much trying to bring down the entire community in a petty attack is just...a colossal understatement.

 

[Prudence]

In the entire history of the site, I can safely say this is easily the most ****** up thing thats happened.

A big thanks to all the staff who worked on this, and especially to Shawn.

To say Im disappointed and angry about the idea of a member we trusted so much trying to bring down the entire community in a petty attack is just...a colossal understatement.

Couldn't have said it truer.

 

[Vinn Esper]

Kinda had a feeling it was hacked based on the timing and duration of the site being down. This is a pretty sad thing for someone to do. These type of malicious things should be punished in some way. I hope your guy gets them. Thanks very much to @Sreeya husband. If you like I know a guy I could put you in touch with who works for a corporation and among primary duties are preventing that corporation from being hacked. He's a long time friend of mine and a huge Star Wars fan. If you'd like let me know and I will talk to him and if he agrees, I'll put you in touch with him.

 

[Logan]

Good luck with everything @Aberforth, I hope whatever happened gets resolved quickly and goes back to normal. Glad you're here, you fixed google fonts and that means I'll love you forever.


-


ALSO THANK YOU SHAWN, YOU ARE MAGNIFICENT AND I LOVE YOU MORE THAN SREEYA DOES.

 

[Oncaro]

In the entire history of the site, I can safely say this is easily the most ****** up thing thats happened.

A big thanks to all the staff who worked on this, and especially to Shawn.

To say Im disappointed and angry about the idea of a member we trusted so much trying to bring down the entire community in a petty attack is just...a colossal understatement.

I didn't really know Bee, but I was always grateful for the work she did. Because holy crap I wouldn't have been able to do it. So this was... honestly quite shocking, and disappointing.

@Aberforth, as I neglected to say it in my earlier post-- I'm with you, man. As are the rest of us. Hearts go out to you, man.

 

[Dmitri]

Special thanks to Shawn and additional kudos to @Aberforth to sticking around.