GPSUnderground

At the beginning of 2017, the GPSUnderground forum was identified as one of several vBulletin based platforms compromised by attackers. The breach actually occurred in mid-2016 and the data was subsequently traded and sold within the underground community. The incident resulted in the exposure of approximately 670,000 user accounts. The compromise was likely facilitated by known vulnerabilities in the legacy forum software which allowed unauthorized access to the backend database.