Stack Overflow Compromised
According to The Hacker News, a hacker gained unauthorized access to the production version of Stack Overflow.
The attack initially exploited a bug in the development version of Stack Overflow and then escalated privileges to gain access to the product version.
The company also admitted that the intruders may have managed to access information on users. “While our overall user database was not compromised, we have identified privileged web requests that the attacker made that could have returned IP address, names, or emails for a very small number of Stack Exchange users. Our team is currently reviewing these logs and will be providing appropriate notifications to any users who are impacted,” said Mary Ferguson, VP of Engineering at Stack Overflow.
The company has taken some steps to mitigate further damage. They are terminating the unauthorized access to the system and also patching the bug that allowed the unauthorized access and escalation.
Source: https://thehackernews.com/2019/05/stack-overflow-databreach.html
Related content
-
News for Admins
Stack Overflow Compromised; Docker Hub Breached; Microsoft Brings Linux to Windows 10; Running Oracle? Get Ready for Almost 300 Patches and Microsoft Acquired RTOS Company.
- Hacks Abound
- Hackers Threaten to Wipe More Than 300 Million Apple Devices Remotely
-
Improved defense through pen testing
Discover indicators of compromise with open source pen testing tools. -
News for Admins
New Zero-day Vulnerability in Windows Systems, New Systemd Vulnerability Affects Most Mainstream Linux Distributions, SQLite Database Vulnerable, Microsoft Can't Catch a Break from Vulnerabilities, Hacks Abound
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Most Popular
Support Our Work
ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.
