This is a general update on what happened on the morning of Saturday Nov 11th. What happened LG was targeted for ransom-ware. Some orginization managed to get into lg's servers and encrpyt lg's database and demand a random to unluck it. We of course will not do this. What was taken It would be safe to presume that this person(s) would copy the database. We can not confirm if they download the files or just lock them. What info is at risk If person(s) took the db, they would have access to your email address. All LG passwords are hashed. If you do not know what this means, your lg password is converted to a 32 character word that can not be reversed. This means no copy of your lg password is ever stored on lg's server(s). If they have the hash, its very unlikely they could convert it back, but not impossible. LG never stored any personal or financial info. This means if you did any payments for buyouts or plat accounts, that is all handled by PayPal. Everything related to ESHL is uneffected. For all connected accounts like Xbox, Twitch, Twitter ect. LG never stored any login or password information for that, that was all handled by the OAUTH standard. LG can only retrieve info on connected accounts, never change. So your XBL account is not at risk. What is our response Since person(s) got into the servers, we assumed they must have installed a back door. So today we completely destroyed both our web and database server and rebuilt them from scratch. This is why we were down for the day. @ImJeff and i have a very good idea how this happened, and without detailing some of the steps we took, and will take, we are confidant this will not happen ever again What data is lost There are 2 sections to the database, the game and league data, and the forums data. We lost a weeks worth of game data, everything after Nov 4th is lost. This includes games, trades, stats. However, we will get the OCR working and since those work from XBL images, stats can be readded. As well at the API goes 5 games back and of course if there is a copy of any streams. We ask as of tomorrow all managers do their best to get week 4 stats update to date the best they can. For the forums and "everything" else data, we lost about 2 weeks worth. This includes any changes you did to your lg account. The pm system was a bit out of sync, so i completely flushed it so old pm's are gone. What can you do We would recommend you change your lg password, again your lg password was not saved on the server but the hash of it was. If you used your LG password for other accounts like XBOX or psn, to be safe i'd recommend changing that too What about League related questions It will be business as usual and games will start on Sunday November the 12th. The general rule of anything that happened before this event is set in stone. This includes all trades , bans or anything else. There is still a ton of things i will need to fix and i will be doing so all day today and Sunday. I will address all issues as they come up. Final Comments We do not think this event is related to any single member of LG, this looks like a standard random-ware attack where someone is looking for a quick buck of the backs of others. I hope there is a special place in hell for people who do stuff like this, But this is a lesson for us, and one we will take very seriously. If you have any questions or concerns please pm us and we'll address them the best we can. We apologise for any inconvenience this may cause our community.
Thanks for your patients during the outage today. If you have any league related issues be sure to send a PM league’s BOG ASAP! If you uncover anything else on LG that appears to be broken be sure to send Tris and I a PM or post in here and tag us
Should of just took all the money you get from the r e t a r d s that buy out there CB ban out and bought this site back.
As Tris stated. All trades, bans etc that were undone need to be redone. Everything should be returned to how it was last night!
As Tris stated. All trades, bans etc that were undone need to be redone. Everything should be returned to how it was last night!
So basically i have to manually input all my games stats from the last two weeks in order to get our current record to what it was and stats?
Ya i just gotta rebuild the team stats so all week 3 is in there, or next time you save stats for your team, it will find them
Sorry to hear Tris. This has happened to a few staging databases we had at work that didn't have proper authentication on. Luckily it was only testing data we had on staging. Some takeaways from this though - People should actually be informed that their passwords CAN be exposed here. Hashes are not irreversable, they are as only as strong as the password was. For example, if a users password was "catfood" it could be cracked very simply. Most of these DB ransomwares will attempt basic bruteforce attempts like this. If someone used the same password here which they do for their email for example, that could be a problem. - LG wasn't targetted per say, DB ransomware are fully automated on mass scale, and only attack low hanging fruit like, databases with default passwords/no passwords, unpatched systems etc. A targetted attack would be much more dangerous, as then it becomes more likely it will happen again and that they'll definitely try and bruteforce the passwords in the database. God dman Russians.
Hopefully this teaches you that daily, along with weekly, backups are a necessity for a site this big.
Are transactions still being processed? I still show as a free agent when I should be on Winterhawks, stats are missing too No rush if you guys are still working on things, just saw a bunch of people with their teams assigned so thought I would post just to make sure