zFire Xue’s RedZone apparently has fallen foul of an SQL injection exploit, which seems to have allowed intruders unfettered access to the system, including the Second Life password collection system mentioned previously.

The crack itself looks plausible, along with the screenshots of the more secret areas of the site. Data for the RedZone security system may have been altered or muddled rendering the system untrustworthy (or, some people might say more untrustworthy). Anyone who has logged into the isellsl Web-site at any time should probably change their Second Life passwords without delay.

At present, large chunks of the Web-site are down, and chunks of the database may be missing. It isn’t clear whether there were backups.

Not a good day for any RedZone customer, or for its creator.

Tags: , , , ,



Got a news tip or a press-release? Send it to [email protected].
  • Support us

    Writing is my day job. Site advertising pays for the hosting, but nothing else. Help keep us in coffee and keyboards

    ... or donate in Second Life at this location.

  • ...or use Flattr

  • Read previous post:
    Close