- Moderator
- #1
- Joined
- May 28, 2007
- Messages
- 4,268
As you probably know, Brivium was banned from XenForo after being exposed as running a hackers collective / site and using stolen code. There also was the ethically questionable issue of their addons secretly using callbacks to send data over to their server.
Brivium had the most addons of any developer on xenforo.com so a lot of websites were running their software.
The new information forced webmaster to make a choice about whether or not to trust Brivium software. Software already paid for.
It is almost unthinkable that any addon developer could add exploits in their software. Such could be abused against millions of members of online communities. We can only hope that this will not happen in the XenForo addon community.
No exploit has ever been reported in Brivium software. But still, the questionable ethics shown are worrisome enough to ask yourself the question: would you use a Brivium addon that you already paid good money for?
When Brivium was exposed, several webmaster and I had a group fund running with Brivium to expand an addon. We decided that we would continue the project and simply inspect the code once delivered. Each software release Brivium provided was bug ridden. Eventually Brivium simply sent me fake files and claimed the project was completed. I was able to get a refund through a Paypal claim, so I could refund the group. I did remove all Brivium addons from my sites. That was the last I heard of Brivium in some months.
Last night my account here on TAZ was hacked to delete Brivium related threads. My account has moderating rights on XenForo forums here. I was foolish enough to use a password similar to the one that I used for the Brivium website. I am not sure if that is the cause. To avoid any more incidents, security has been beefed up since. The hacker used an email with the same domain as Briviums hackers collective ******. While this is no definite proof that this was Brivium it seems likely.
Brivium runs an affiliate program. I wonder if some of the addons in the xenforo.com resource manager are created by Brivium and resold on XF.com by other people.
So what do you think about Brivium addons? Do you have them installed? Do you feel secure with it?
Will you keep using them?
What do you think the risks are?
Brivium had the most addons of any developer on xenforo.com so a lot of websites were running their software.
The new information forced webmaster to make a choice about whether or not to trust Brivium software. Software already paid for.
It is almost unthinkable that any addon developer could add exploits in their software. Such could be abused against millions of members of online communities. We can only hope that this will not happen in the XenForo addon community.
No exploit has ever been reported in Brivium software. But still, the questionable ethics shown are worrisome enough to ask yourself the question: would you use a Brivium addon that you already paid good money for?
When Brivium was exposed, several webmaster and I had a group fund running with Brivium to expand an addon. We decided that we would continue the project and simply inspect the code once delivered. Each software release Brivium provided was bug ridden. Eventually Brivium simply sent me fake files and claimed the project was completed. I was able to get a refund through a Paypal claim, so I could refund the group. I did remove all Brivium addons from my sites. That was the last I heard of Brivium in some months.
Last night my account here on TAZ was hacked to delete Brivium related threads. My account has moderating rights on XenForo forums here. I was foolish enough to use a password similar to the one that I used for the Brivium website. I am not sure if that is the cause. To avoid any more incidents, security has been beefed up since. The hacker used an email with the same domain as Briviums hackers collective ******. While this is no definite proof that this was Brivium it seems likely.
Brivium runs an affiliate program. I wonder if some of the addons in the xenforo.com resource manager are created by Brivium and resold on XF.com by other people.
So what do you think about Brivium addons? Do you have them installed? Do you feel secure with it?
Will you keep using them?
What do you think the risks are?
