Canonical a anuntat in cursul zilei de astazi ca au descoperit o bresa in propriul sistem de securitate care expune utilizatorii inregistrati pe forumurile Ubuntu. Toti cei care au fost expusi acestui atac, vor fi notificatii prin email de catre staff-ul Canonical, intre timp forumul a fost inchis pentru a repara daunele produse de hackeri.
Anuntul a fost facut de companie pe blog-ul sau:
There has been a security breach on the Ubuntu Forums site, ubuntuforums.org. We take information security and user privacy very seriously, and apologise for the breach and ensuing inconvenience.
At this time,
- We have confirmed the attackers were able to access all user email addresses and hashed passwords on the Forums site. While the passwords were not stored in plain text, good practice dictates that users should assume the passwords have been accessed and change them. If users used the same password on other services they should immediately change that password.
- We believe the issue is limited to the Ubuntu Forums and no other Ubuntu or Canonical site or service is affected.
- We have begun the process of notifying by email all users whose details have been compromised.
- We are continuing to investigate exactly how the attackers were able to gain access and are working with the software providers to address that issue. Once the investigation is concluded we will provide as much detail as we safely can.
Daca sunteti inregistrati pe aceste forumuri, va sugeram sa va schimbati parola imediat, inclusiv pe oricare alt cont al dumneavoastra, pe care aveti aceiasi parola.