Jump to content

We're back!


Recommended Posts

God bless you guys!


Any Idea why this happened? 

Unfortunately someone hacked into our database and stole some user information. The reason it has been down for so long is, Muckduck has been busy closing all the security flaws so this hopefully doesn't happen again.

Sent from my hamster that lives in my motherboard box

Link to comment
Share on other sites

Question: Is it possible to get a more detailed statement about what happened?


  • What happened?
    • Exploit in software (and could it be prevented by an official update)
    • Hack into the server (and could it be prevented by server admin / hosting company)
    • Abuse of admin account (and was the admin called "admin" with password "admin")
  • Could it have been prevented?
    • By the team who maintains the website (update, server config, admin credentials)
    • Or was it a day-one attack without any known fixes
  • What is done to fix it?
  • What is done to prevent it in the future?
  • What will be done in the future to prevent it from happening again?
  • Who was/were responsible?
    • At AW side (simply "we as AW" is an acceptable answer)
    • the thrid party who "got in" (if known)

These are some questions which I always answer in case something happened, even without asking, so I'm surprised that we don't have these yet.

I'm aware that not all questions can be answered directly, a a bit more information than "shit happened but we're back" is too little.



Background: I've been working in web development for over 10 years now, and unfortunatally had issues like this as well. And I've learned that the most important thing is to stay transparent to clients/users/etc. and take your losses, even when it's not visible to them (which in this case did happen).


Link to comment
Share on other sites

Obviously the details of the hack will not be made public so we are unable to answer detailed questions. But I will attempt to answer things more generally. 


Could it have been prevented?  

Not at the time, and not reasonably by the admin team.


What is done to fix it?

The vulnerability exploited has been closed.


What is being done to prevent it happening again?

What will be done in the future to prevent it from happening again?

Everything possible, remember it was staff as much as members who were the victims and it's in our best interest that this doesn't happen again so rest assured that we are doing everything we can to avoid a repeat.


That's about as much info as we're comfortable releasing at the moment.


While I know this answer is far from complete you will understand our reluctance to divulge too much and again remember this was a hack that affected us all.


We hope you understand and thank you for your patience during this trying time.

Link to comment
Share on other sites

On 8/26/2016 at 6:18 PM, Chuck Norris said:

 stole some user information.


4 hours ago, zissou said:



do you know exactly what they stole, or just that they definitely took some data? 


4 hours ago, Auntystatic said:

I've just tried to look at the homepage to check the game trackers and the url sent me straight to the forums http://www.ahoyworld.net/


Home page is back, but it is going to the https:// version which does not have the game trackers on it.


This would be due to recent browser's security settings requiring that all content on a page sent via https is also sent via https, and the trackers are either not available via https or they're not linked to https in the page


edit: I think. i am by no means an expert.

edit 2: http://i.imgur.com/DuO2VH6.jpg

Link to comment
Share on other sites


It was explained here:



The squad XML is currently down for maintenance,  we were simply transferring the tags onto a new server which has unfortunately caused intermittent problems.  We are currently working on it and hope to have it solved very soon, I will announce once its up and running fully.

FYI it has nothing to do with recent events.

- Mark T


Link to comment
Share on other sites

  • 2 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Forum Statistics

    Total Topics
    Total Posts
  • Create New...