Yes Cosmic Cleric, it does look like they did get a dump of our database back when we were hacked a few years ago and they are using it to send out phishing emails. At the time I only thought our filevault was compromised but it looks like they took our database as well.
I have since gone over every query to make sure there is no injection vulnerabilities. We have also moved to new servers since then with much better security.
I should have posted to make that more clear and I'm very sorry this happened.
Last edited by Dolby : 02-07-10 at 04:12 PM.
|