SitePoint hacked: Hashed, salted passwords pinched from web dev learning site via GitHub tool pwnage

2021-02-05 19:05

Reg reader Andy told us: "Got an email from SitePoint this morning saying that they had been hacked and some non-important stuff like names, email addresses, hashed passwords etc might have been stolen. Coincided with a big increase in spam that I've been getting but that's probably coincidence."

An email sent to SitePoint users and seen by The Register confirmed the hack, though at the time of writing, the company has not published anything about it on its website or social media accounts.

It went on to say that no credit card data had been accessed and that stored passwords were hashed and salted.

Irritated SitePoint users got on their forums to start complaining about the hack.

SitePoint has been around almost as long as El Reg, having been founded in the late '90s and evolving into a paid resource for people wanting to learn the basics of web development.

The standard advice applies: if you've reused your SitePoint password for something more valuable, change both passwords.

News URL

https://go.theregister.com/feed/www.theregister.com/2021/02/05/sitepoint_hack_supply_chain/

#github #hacked #WEB

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Github		12	2	40	30	14	86