Three other big websites report being hacked
|
Bookmark and Share
Dec 18, 2014  |  Vote 0    0

Three other big websites report being hacked

Users of ICANN, Aras Technica and phpBB are being asked to changed passwords after companies divulge recent breaches

OurWindsor.Ca

Damage caused by the hacker attack on Sony will likely cost hundreds of millions of dollars, but the company is just one of several to face recent online attacks.

This week, three large websites and service providers — ICANN, Ars Technica and phpBB — announced that they had recently been hacked.

1. The Internet Corporation for Assigned Names and Numbers, which manages several parts of the Internet’s basic structure, announced on Tuesday that part of its website and database had been hacked in November.

Using targeted emails designed to look as if they had been sent by someone on the ICANN domain, an attacker was able to access the Centralized Zone Data System.

That database contains personal information, including usernames and passwords, used by administrators who manage the registration of website domain names.

Usernames and passwords were encrypted, but ICANN is asking users to create new passwords.

The attacker also accessed a wiki page used by ICANN’s Governmental Advisory Committee, but looked at only two private pages.

Email accounts belonging to some ICANN staff were also compromised, the organization said.

2. Tech news website Ars Technica said on Monday that its website had also been hacked and some encrypted user data downloaded during an attack on Sunday.

The attacker accessed one of the Ars Technica servers, and from there would have been able to copy the website’s user information database, which includes usernames and passwords.

Those passwords were encrypted, but Ars Technica is also asking users to change their passwords.

The attacker also changed the website’s front page to include a streaming song by nerdcore hip hop group Dual Core.

3. Databases belonging to the developers of open-source online forum software phpBB were also attacked on Sunday.

On Monday, phpBB said that attackers used an employee’s compromised username and password to access the company’s servers.

The attacker would have been able to copy usernames and passwords from the database. Users of phpBB are also being told to change their passwords, some of which were not encrypted.

4. Last month, a group calling itself the Syrian Electronic Army hacked a third-party identity management service to access media websites in the U.S., Canada and the U.K.

In that incident, attackers would have been able to execute their own code in the browser of anyone visiting the website.

They appeared only to add a piece of JavaScript that created a pop-up window that said “You’ve been hacked by the Syrian Electronic Army (SEA).”

Toronto Star

|
Bookmark and Share

(0) Comment

Join The Conversation Sign Up Login

Latest Local News

In Your Neighbourhood Today

SPONSORED CONTENT View More