homepage Welcome to WebmasterWorld Guest from 50.16.169.220
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member
Home / Forums Index / Hardware and OS Related Technologies / Linux, Unix, and *nix like Operating Systems
Forum Library, Charter, Moderators: bakedjake

Linux, Unix, and *nix like Operating Systems Forum

    
After Being Hacked, Canonical Warns Ubuntu Forum Users To Change Passwords Immediately
engine




msg:4595326
 1:00 pm on Jul 22, 2013 (gmt 0)

E-mail addresses, user names, and password data for every registered user of the Ubuntu Forums—estimated to be 1.82 million accounts—were exposed in a security breach hitting the company responsible for maintaining the freely available, open-source operating system. There's no sign the compromised data has been published online.

The Ubuntu Forums were closed Saturday evening, following the discovery that the site's homepage was defaced by someone who managed to gain privileged access to its underlying servers. To their credit, administrators with Canonical, the for-profit company that markets Ubuntu, quickly issued an advisory that warned users who used their forum password to safeguard other accounts to change the credentials immediately.After Being Hacked, Canonical Warns Ubuntu Forum Users To Change Passwords Immediately [arstechnica.com]
"While the passwords were not stored in plain text, good practice dictates that users should assume the passwords have been accessed and change them," Ubuntu CEO Jane Silber wrote in an updated advisory. "If users used the same password on other services, they should immediately change that password."

 

JS_Harris




msg:4595389
 4:21 pm on Jul 22, 2013 (gmt 0)

Hopefully none of the 1.82 million account holders used the same login and password elsewhere or used these email addresses for anything but that forum, that's where the real damage can happen.

This type of breach is exactly why I am not a fan of Google's 'link everything and use real personal info and names' etc, it's dangerous.

martinibuster




msg:4595421
 5:28 pm on Jul 22, 2013 (gmt 0)

Good point, JS_Harris. Varying passwords is a good practice.

brotherhood of LAN




msg:4595530
 10:43 pm on Jul 22, 2013 (gmt 0)

Wonder what the motives for hacking them are, other than teaching them a lesson for having an insecure website?

Passwords are such a hassle nowadays.

bill




msg:4595638
 7:28 am on Jul 23, 2013 (gmt 0)

As the site is offline still those of you with accounts will have to wait until they fix things.

This was just a forums hack. What were they using for their forums?

thecoalman




msg:4595679
 10:16 am on Jul 23, 2013 (gmt 0)

According to archive.org on March 4th it was VB. That said I know when phpBB.com got hacked a few years back they didn't breach the forum software but third party software that was also installed.

bill




msg:4595930
 1:46 am on Jul 24, 2013 (gmt 0)

I dug around a bit too. It looks like they were running vB 4.2.0 and 1.8 million accounts were compromised?! That's a huge install and it's no wonder they're taking their time to get everything back online.

bill




msg:4597944
 8:26 am on Jul 31, 2013 (gmt 0)

It looks like they finally opened their forums again after a long time offline.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Hardware and OS Related Technologies / Linux, Unix, and *nix like Operating Systems
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved