Its been a crazy past couple days. First I’d like to apologize for the site and fan forums being down. The issue started with our site being hit hard by a DDoS attack and instead of just shutting things down till the attacker(s) moved on to another target we decided to fight back by giving the server more resources and then eventually blocking all traffic from certain countries. In the end, they had the last laugh by hacking into our server and using our server to start attacking other servers.
Our host stepped in to help us cleanup and harden the security of the site (we had some abandoned FTP accounts with weak passwords). Unfortunately one of the FTP accounts and its data was associated with our WordPress and vBulletin installations. When we realized the error we asked our host to restore from a backup. Thats when we were informed that their backup system hasn’t been working and actually crashed the week before losing all saved backups. But hey, they were very sorry.
Luckily, our MySQL databases for the site and fan forums were not deleted. A quick installation of WordPress and pointing it to the existing database (same thing for the forums using vBulletin) and we were back in business on the backend. We hired our theme designer to reinstall and configure the theme, plug-ins and widgets. For the most part we are about 99% restored. Some plug-ins aren’t working correctly but nothing that should affect use of the site.
While we don’t collect sensitive personal information like credit card numbers, mailing addresses, etc,. I want to assure you that the database containing the information we do have (mainly e-mail addresses) wasn’t compromised. We hired a third party contractor to conduct a security audit and the intrusion was limited to uploading trojans to attack other sites.
Anyway, after a long, frustrating and f-bomb filled couple of days and nights, its nice to be back. Thanks for your patience and most of all, your support.