Wiki security breach (Important, read this)
Moderator: Lucifer
Wiki security breach (Important, read this)
The wiki has been taken offline to deal with a security breach. If you visited recently you may have been redirected to install a fake Flash update. This update is a trojan horse and it is malicious.
If you use a common password for your wiki account and a collection of other sites, then I suggest you change the password for all of those accounts. Your browser has a password manager to deal with multiple account usernames and passwords—You should use it. There are also several good external applications that handle password management.
If you use a common password for your wiki account and a collection of other sites, then I suggest you change the password for all of those accounts. Your browser has a password manager to deal with multiple account usernames and passwords—You should use it. There are also several good external applications that handle password management.
Re: Wiki security breach (Important, read this)
I run Ubuntu, how am I affected? How can I detect damage to my system and repair it?
Re: Wiki security breach (Important, read this)
You should only be affected if you installed the malicious Flash update trojan. It does not install automatically without your consent. If your browser downloaded the malicious update file, then do not run it. Simply delete it. If you did install the trojan, then I do not know to what extent your system has been compromised. But I repeat—if you did not run and complete the install, then your system should be okay.sinewav wrote:I run Ubuntu, how am I affected? How can I detect damage to my system and repair it?
Re: Wiki security breach (Important, read this)
The Ubuntu updater opened and I ran it because I thought it was a normal update. Crap. Maybe I should just wipe and reinstall...dlh wrote:It does not install automatically without your consent.
Re: Wiki security breach (Important, read this)
How long a period does this encompass?
Re: Wiki security breach (Important, read this)
It occurred between Thursday night and 10 AM EST Saturday.Mkay1 wrote:How long a period does this encompass?
- Jonathan
- A Brave Victim
- Posts: 3391
- Joined: Thu Feb 03, 2005 12:50 am
- Location: Not really lurking anymore
Re: Wiki security breach (Important, read this)
What does it mean for those without the trojan? Say, if the database has been compromised, it might still be a good idea to change passwords, although it shouldn't be as big a deal if the password was strong.
ˌɑrməˈɡɛˌtrɑn
- Lucifer
- Project Developer
- Posts: 8640
- Joined: Sun Aug 15, 2004 3:32 pm
- Location: Republic of Texas
- Contact:
Re: Wiki security breach (Important, read this)
As I recall, mediawiki doesn't store the password itself, only a hash of it.
- Jonathan
- A Brave Victim
- Posts: 3391
- Joined: Thu Feb 03, 2005 12:50 am
- Location: Not really lurking anymore
Re: Wiki security breach (Important, read this)
That's why it isn't as big a deal if your password is strong. But if the password is weak, it will be pretty easy to find the password that generated the hash by brute force.
ˌɑrməˈɡɛˌtrɑn
Re: Wiki security breach (Important, read this)
Yes, a hash of the password is stored in the database. The mediawiki documentation has more information.
Re: Wiki security breach (Important, read this)
Has this got anything to do with why aagid isn't working ? The same thing Happens here > aagid.net/ <. if it is to do with the same thing, will aagid be back up the same time as wiki ?
- Phytotron
- Formerly Oscilloscope
- Posts: 5041
- Joined: Thu Jun 09, 2005 10:06 pm
- Location: A site or situation, especially considered in regard to its surroundings.
- Contact:
Re: Wiki security breach (Important, read this)
I forget what password I made for the wiki. Once it's back up will I be able to access a "forgot my password" dealio, or...? (Actually, I'm not entirely sure what email I used, either. Der.)
(I can pinpoint the last time I visited the wiki to the evening of the 9th, but, what Jonathan said.)
(I can pinpoint the last time I visited the wiki to the evening of the 9th, but, what Jonathan said.)
Re: Wiki security breach (Important, read this)
I would suggest reposting this in the Welcome area, or possibly as a sticky on the forums, since many users here have accounts there, and I'm not sure how many people regularly view this subforum (I only checked it because I noticed the wiki was down, thankfully didn't download that flash player myself).
The Halley's comet of Armagetron.
ps I'm not tokoyami
ps I'm not tokoyami
Re: Wiki security breach (Important, read this)
None of us can post in that area And it wouldn't really be any more visible there for the people who need to see it. Maybe this is one of those cases where a bulk mail to the registered email-addresses in the database is in order?
Re: Wiki security breach (Important, read this)
With the Wiki down, will there be any tournaments held like the Ladle or CTF Brawl?