Friday, July 23, 2021

SitePoint, a Webdev tutorials site, discloses data breach

Must Read

Absa Suffers Data breach

Absa has informed customers of a data breach possibly compromising their private info. As stated by the Johannesburg, South Africa-based...

Firefox 88 start disabling FTP with removal set for Firefox 90

Firefox 88 update has disabled File Transfer Protocol (FTP) support completely from the browser. The handling of clicking on...

Android Messages are now End-to-End Encrypted

Google has announced that cumulative encryption (E2EE) will start rolling out on its own Messages platform, bringing it in...

The SitePoint web developers community has disclosed a data breach after one million user credentials were sold on a forum, eventually leaked for free in hacker forum.

SitePoint is a website launched in 1999 that offers content and a community devoted to web professionals and developers.

The site offers a premium membership that provides access to over 600 books, courses, and talks.

SitePoint admits security breach this week in emails sent to some of its users.

On January 26th, 2021, a threat actor known as ShinyHunters shared the database for Learnable.com for free on a hacker forum. The learnable.com redirects to the Sitepoint.com domain.

This database contains 1,020,959 people, including members’ names, email addresses, bcrypt hashed passwords, date of birth, country, IP address used during registration, and other information.

The company also said a statement, “At this point, we believe the accessed information mainly relates to your name, email address, hashed password, username, and IP address.”

SitePoint Sent emails of the data breach.

SitePoint disclosed a data breach where they confirm that threat actors hacked their systems and stole member data in an email sent to users.
“We have recently confirmed that a third party breached SitePoint’s infrastructure, and some non-sensitive customer data was accessed as part of this attack.”

“As a precautionary measure, while we continue to investigate, we have reset passwords on all accounts and increased our required length to 10 characters. Next time you log in to SitePoint, you will need to create a new password,” SitePoint states in a data breach notification.

SitePoint said that based on the current situation, the breach occurred after the attackers gained access to “a third-party tool they used to monitor their GitHub account.”

“This allowed access through our codebase into our systems. This tool has since been removed, all of our API keys rotated, and passwords changed,” the company said.

While SitePoint doesn’t mention this tool by name, it is most likely referring to a tool from Git analytics service Waydev, which disclosed a security breach last summer.

This same tool was also used to breach custom apparel vendor Teespring, whose data was also sold by the same hacker, in the same package simultaneously as the SitePoint data.

SitePoint has now initiated a password reset on all accounts and asks users to choose new ones that are at least ten characters long.

The tutorials and books publisher believes that the stolen passwords are currently safe, as they have been hashed with the bcrypt algorithm and salted, which should make cracking the password strings to its plaintext version a pretty lengthy process for the time being.

a2434345d63481a40f0d145881b41013?s=96&d=mm&r=g
Priyanshu Vijayvargiya
Founder and Editor-in-Chief of 'Virtualattacks Inc' Priyanshu Vijayvargiya is a cybersecurity analyst, Information Security professional, developer, and a white hat hacker.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest News

OAIC: Uber found to have interfered with the privacy of over 1.2 million Australians

The Office of the Australian Information Commissioner (OAIC) has determined that Uber Technologies, Inc. and Uber B.V. have interfered...

Over 80 US Municipalities data are exposed due to Misconfigured Amazon S3

A team of Cybersecurity researchers at Wizcase found major data exposure of Over 80 US Municipalities due to the Misconfigured Amazon S3 Bucket. This happened...

Formbook malware Upgraded as an XLoader malware to Attack macOS Systems

Researchers have spotted an upgraded malware variant of Formbook malware which is now Upgraded as an XLoader malware to Attack macOS Systems. Cybersecurity researchers on...

Millions of HP, Samsung, Xerox Printers are Vulnerable to 16 year old bug

A 16-year-old security vulnerability affects Millions of HP, Samsung, Xerox Printers Driver allows attackers to gain admin rights on systems using the vulnerable driver...

MosaicLoader malware targets cracked software via SEO poisoning

New MosaicLoader malware targets users that are searching to download cracked software. Cybercriminals run ad campaigns in search engine results to boost their malicious...

More Articles Like This