Results 1 to 2 of 2

Thread: Ubuntuforums hacked

  1. #1
    Join Date
    Aug 2002
    Posts
    6,223
    Rep Power
    0

    Default Ubuntuforums hacked

    Email recieved this morning:

    Ubuntu forums forums@ubuntu.com via pesanta.canonical.com

    05:00 (3 hours ago)

    to me
    Hello,

    You are receiving this message because you have an account registered with this address on ubuntuforums.org.

    The Ubuntu forums software was compromised by an external attacker. As a result, the attacker has gained access to read your username, email address and an encrypted copy of your password from the forum database.

    If you have used this password and email address to authenticate at any other website, you are urged to reset the password on those accounts immediately as the attacker may be able to use the compromised personal information to access these other accounts. It is important to have a distinct password for different accounts.

    The ubuntuforums.org website is currently offline and we are working to restore this service. Please take the time to change your ubuntuforums.org account password when service is restored.

    We apologize for any inconvenience to the Ubuntu community, thank you for your understanding.

    The Canonical Sysadmins.
    .
    PC - Ubuntu 15.04 64bit Desktop
    HP Pav G60-236US 3GB RAM Laptop, Ubuntu 15.04 64bit and Win7 Home

    "So Daddy, how come you telling me stealing not right when YOU copying DVDs? How come? How Come?"


    RIP Ramesh ...

  2. #2
    Join Date
    Apr 2003
    Posts
    13,269
    Rep Power
    34

    Default Gun-wielding penguin takes over Ubuntu Forums, waves AK-47 at Linux users everywhere

    Gun-wielding penguin takes over Ubuntu Forums, waves AK-47 at Linux users everywhere

    ...
    By now, the day after the attack, there's just a breach alert holding page put up by Canonical:


    It's hard to imagine what the hackers hoped to achieve by taking out a bunch of free forums for a free distro of a free operating system.

    Some commenters in the Twittersphere can't find rhyme or reason either, and have let rip with opprobrious tweets to make their displeasure known:


    Of course, one perfectly likely explanation for the hack is clear from Canonical's mea culpa letter: for the personally identifiable information (PII) that it yielded.
    Read more: http://nakedsecurity.sophos.com/2013...rs-everywhere/

    Ubuntu users, relax: the gun-toting penguin says s/he means no harm

    Ubuntu Linux users can relax.

    Maybe.

    Someone claiming to be behind the weekend's Ubuntu Forums gun-toting-penguin takeover means no harm, s/he said in a TwitLonger post.

    The person, going by the name of “Sputn1k_”, says to stop fretting about the password cracking, already, though s/he is enjoying the "rage tweets".

    The encryption used to secure the 1.8 million filched users' local usernames, passwords, and email addresses might not be top-notch, but it's good enough to slow the cracking enough to make it tedious, Sputn1k_ says.
    Read more: http://nakedsecurity.sophos.com/2013...means-no-harm/
    "The best software is the one that fits your needs." - A_A

    Virus free since: date unknown
    Anti-virus free since: August 2008

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •