Hackers who breached vBulletin forum website exploited a zero-day flaw, the company issued emergency security patches. Hackers accessed user personal information, including user IDs, names, email addresses, security questions and answers, and password salts. The company has reset the passwords for over 300,000 accounts on the official website, and released an emergency security patch release for versions 5.1.4 through.1.9 of the vBulletsin Internet forum software. The experts speculate the existence of the flaw for the past three years.”]
Source: https://securityaffairs.co/wordpress/41750/cyber-crime/vbulletin-security-patches.html