Comodo Forums Hack Exposes 245,000 Users’ Data — Recent vBulletin 0-day Used

If you have an account with the Comodo discussion board and support community forums, also regarded as ITarian Forum, you must improve your password immediately.

Cybersecurity organization Comodo has become a single of the main victims of a recently disclosed vBulletin -working day vulnerability, exposing login account info of over almost 245,000 end users registered with the Comodo Forums internet websites.

In a transient protection notice posted previously now, Comodo admitted the data breach, revealing that an not known attacker exploited the vBulletin vulnerability (CVE-2019-16759) and most likely acquired entry to Comodo Boards database.

It’s worthy of noting that Comodo discussion board was hacked on September 29, virtually 4 times just after vBulletin builders launched a patch to let directors handle the vulnerability, but the organization unsuccessful to apply the patches on time.

As The Hacker Information broke the information very last 7 days, an nameless hacker publicly disclosed aspects of a essential then-unpatched vulnerability in vBulletin—one of the widely applied online forum software—which could have permitted remote attackers to execute arbitrary instructions on the net server.

Even so, Comodo has not specified which of the firm’s forums has been hacked out of the two separate forums it owns.

Just one the forums, “forums.comodo.com,” is hosted at Comodo’s very own sub-domain and is powered by the different forum software package, identified as Simple Devices Discussion board, and seems not to be impacted.

The second forum, which operates about the vBulletin software program and has very likely been hacked, is ITarian Forum hosted at “forum.itarian.com,” a discussion board in which the business gives technological aid to the end users of its goods.

Comodo vbulletin forums hacked

What Type of Info Was Accessed?

The breached database contains discussion board users’ data, such as:

  • Login username
  • Title
  • E mail handle
  • Hashed passwords
  • Final IP tackle utilised to obtain the message boards
  • Some social media usernames in pretty limited scenarios.

The corporation grew to become aware of the security breach around the weekend on September 29 morning, which implies users registered on Comodo Community forums until eventually this Sunday are impacted by the breach.

“Pretty recently a new vulnerability in the vBulletin program, which is one of the most well-known server applications for website opinions which include the Comodo Community forums, was manufactured community,” the organization suggests.

“Over the weekend at 4:57 am ET on Sunday, September 29, 2019, we became knowledgeable that this protection flaw in the vBulletin program had become exploited ensuing in a prospective information breach on the Comodo Boards.”

Instantly following detecting the protection intrusion, the Comodo IT infrastructure group straight away took the discussion boards offline in an attempt to mitigate the vBulletin exploit and used the suggested safety patches.

What Consumers Must Do Now?

If you have registered with Comodo Community forums on or prior to September 29, you are extremely proposed to straight away adjust the password for your forum account to a potent and exceptional 1 and for any other on the net account in which you use the exact same qualifications.

Web Application Firewall

Despite the fact that the account passwords were being hashed in vBulletin for the Comodo Forum people, Comodo advises people to adjust their passwords as part of excellent password tactics.

“We deeply regret any inconvenience or distress this vulnerability may perhaps have brought about you, our customers,” the enterprise suggests.

“As customers of our community of Comodo Forum users, we want to reassure you that we have place in area steps to make certain that vulnerabilities in third-party software program, these types of as vBulletin, will be patched instantly when patches become accessible.”

Aside from this, at the time of producing, the enterprise has also briefly disabled the registration for new users on the influenced forums, The Hacker Information verified.

Fibo Quantum

Be the first to comment

Leave a Reply

Your email address will not be published.


*