18.38 CET: The hacker responsible for attacking PGTour.net has got access to administrator accounts at WGTour.com.
We have sources telling us that the hacker is using a method called XSS (Cross Site Scripting) by sending false links and then stealing a cookie with passwords. One WGTour.com admin reportedly clicked the link meaning the hacker got access.
The hacker now seem to have access to a regular admin account meaning it's likely he can access news and forums.
We have been unable to contact the WGTour administration and we're posting this news to encourage WGTour administration to quickly be advised that there's a leak.
* Update 18.45: Contacts have finally been made with the WGTour administration and they are working to protect their site.
** Update 19.13: The account that leaked has been shutdown and can no longer be used to destroy or remove any content at the site. Whether more accounts are taken over is yet unclear, however, the hacker has on his own accord contacted WGTour and informed them of steps he has taken so that they could be prevented. This is for sure the same one who attacked PGTour, yet his intentions with WGTour does not seem equally harmful.
*** Update 19:33: After the account was locked down, the hacker said: "the fun with WGTour stopped now. I got as far as I could. So that's it with WGT".
Whether those words are true or not the future will tell. If more updates should be coming in we will update this news. Regardless, we encourage everyone to change passwords to your accounts and keep them different from site to site for security reasons.
We hope this was the last in what seemed to be a series of attacks against StarCraft community sites.
