Monday, August 3, 2009

PerlMonks ZF0 Hack Has Wider Implications

Perl PAUSE accounts also possibly compromised

The recent Zero for 0wned (ZF0) e-zine, which revealed hacks against multiple websites, disclosed the plain text passwords of some 580 high-ranking PerlMonks users and claimed that its authors had the complete user database. The Perl programmers frequenting PerlMonks also have accounts on the official [Perl programming] Authors Upload Server (PAUSE) and, according to ZF0, many of them reuse passwords.

During the evening of July 28, a text document called ZF05.txt was published online. The file described recent successful attacks against servers hosting the websites of renowned security experts, companies, as well as programming and hacking communities. Amongst them was PerlMonks, a highly popular Perl forum, coordinated by the Perl Foundation.

"Some time on May 20, 2009, an unused (but still on line) perlmonks server was hacked, and its root password obtained by unknown individuals. The hacker(s) dumped contents from the perlmonks user database on that machine, data which is estimated to be current as of approximately September 2008," an official PerlMonks announcement reads. A later note estimates the accuracy of the information in the compromised database to as recent as mid-April.

The ZF05 document contained information, including the passwords, emails and real names of 580 PerlMonks janitors (website cleaners) and Saints (admins and moderators), including Tim Vroom, its founder. After being notified of the leak, the administrators notified the owners of the exposed accounts and forced a reset of all their passwords.

Check Softpedia for more info


Anonymous said...

I recently came accross your blog and have been reading along. I thought I would leave my first comment. I dont know what to say except that I have enjoyed reading. Nice blog. I will keep visiting this blog very often.


d3v1l said...

you are welcome,thank you :)