It seems the hackers are working over time this week to steal passwords, and the latest victim is one of the tech blogging world’s own.
Phandroid has revealed that its popular forums have been hit by hackers and well over 1 million passwords have been compromised. The site is moving quickly to rectify the situation and has published the following breakdown of what they are doing and what users need to do as well.
- The exploit used has been identified and resolved. The server has been further hardened and extra “just in case” actions have been taken.. and will continue to be taken.
- All code that resides in the database and the file system has been thoroughly reviewed for malicious edits and uploads.
- No other sites in our network appear to have been accessed (we’re triple checking).
- The user table of AndroidForum’s database was (at a minimum) accessed. While we can’t prove or disprove whether or not the data was downloaded (due to the way the data was transferred), it’s completely possible.. and we’ve taken action assuming this is the case.
- Information in the user database includes: Unique ids, usernames, emails, hashed (encoded) and salted passwords, registration IP addresses, usergroup memberships, infraction levels, last time online, last post date, post count… as well as far less critical things like number of PMs, visitor messages, last online dates, and some vbulletin options set in your UserCP.
- Immediately following the incident, all ~100 staff were notified of a pending password change – and all passwords to were changed to random strings. Almost all are back in with new passwords. Because gaining access to a staff member account could pose the biggest threat, we first moved to secure these accounts.
This has not been a good week for security. Just yesterday the news came out that Yahoo had been hit for 453,000 passwords, and then earlier this morning it was revealed that the NVIDIA forums had 390,000 at rick accounts. It appears that some folks are working overtime are harvesting information.
We like the folks over at Phandroid, and we wish them the best of luck with this situation.