Security News > 2021 > January > OpenWrt discloses forum data breach
The OpenWrt project has revealed that an attacker has managed to access information about its online forum users over the weekend, by compromising the account of a forum administrator.
The OpenWrt project oversees the development of OpenWrt, an open-source, Linux-based embedded operating system/firmaware for a variety of routers and gateways, which can also be used on smartphones, laptops and personal computers.
"People install OpenWrt because they believe it works better than the stock firmware from their vendor. They find it is more stable, offers more features, is more secure and has better support," OpenWrt developers point out.
The OpenWrt project said that while the password of the compromised forum admin account was strong, the account was not additionally secured with 2-factor authentication.
The OpenWrt forum credentials are independent of the OpenWrt Wiki, they said, and "There is no reason to believe there has been any compromise to the Wiki credentials."
Forum users have been advised to be on the lookout for phishing emails and to access the forum independently of a link in an email.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/m1FOEGbtdHU/
Related news
- Dutch Police: ‘State actor’ likely behind recent data breach (source)
- Comcast and Truist Bank customers caught up in FBCS data breach (source)
- Internet Archive hacked, data breach impacts 31 million users (source)
- Internet Archive data breach, defacement, and DDoS: Users’ data compromised (source)
- Fidelity Investments says data breach affects over 77,000 people (source)
- Fidelity Data Breach Exposes Data of Over 77,000 Customers (source)
- USDoD hacker behind National Public Data breach arrested in Brazil (source)
- Tech giant Nidec confirms data breach following ransomware attack (source)
- Insurance admin Landmark says data breach impacts 800,000 people (source)
- Henry Schein discloses data breach a year after ransomware attack (source)