So.. we got hacked

What happened

Today someone deleted our databases. We still had remote connections enabled from development and a bot jumped at it. They left a nice ransom message, but we have no reason to believe that they kept any data. On top of that our backups are useless, since they didn’t work on the postgres codebase yet. Due to the hectical and unplanned September-migration we didn’t have everything locked down yet, which led to this situation.

This is what this means for you and us

  • We don’t store any personal data, so you don’t have to be concerned about any privacy issues. We basically lost all our historical data though.
  • some profiles are gone. We can re-index them when searched for, but that’s a step we can’t do ourselves.
  • progressions (aka historical data, aka charts) are fucked. They’ll fill up again over time, but the past is gone.
  • PC only: aliases are half-fucked. We still have some older data, but about a months worth of aliases is lost.

Current status

We’re working on getting a new server up and running as fast as possible. We don’t know if only the DB or our whole old server is compromised, so its safer to burn it. Muppet is currently working on getting the data we have back into the system, but it’ll take time to finish the restore. Until that is fixed, the site will be down. We’re estimating that we’ll be done by Monday.

Update Oct 1st:

9:00 am: the new server is functional, but we’re still running the db restore

13:30 pm: pc restore is done, ps4 at 25%

18:00 pm: new server is up and useable.