First Apache. Now it's JBoss. Hibernate JIRA Compromised by Targeted XSS Attack.

Home
>Discussions
>News
> First Apache. Now it's JBoss. Hibernate JIRA Compromised by Targeted XSS Attack.

Discussions

News: First Apache. Now it's JBoss. Hibernate JIRA Compromised by Targeted XSS Attack.

First Apache. Now it's JBoss. Hibernate JIRA Compromised by Targeted XSS Attack. (3 messages)
- Posted by: Cameron McKenzie ( @potemcam )
- Posted on: April 19 2010 09:56 EDT
Last week we reported that the Apache foundation's issue tracking software was compromised by a targeted XSS attack. Now it appears that the Hibernate JIRA was compromised as well.

Steve Ebersole's Blog: Hibernate JIRA Compromised

There's no need to panic. This isn't a problem with Hibernate or anything, just the issue tracking software. But this makes for two pretty high profile attacks in the past few days. If you have a public JIRA of your own, you might want to make sure nobody's been trying to get at your passwords.

Reply to this
Threaded Messages (3)
- Codehaus too by Time PassX on April 19 2010 11:50 EDT
  - Codehaus too? by James House on April 19 2010 15:48 EDT
- Atlassian hacked as well by Dean Del Ponte on April 19 2010 12:26 EDT
Codehaus too[ Go to top ]
- Posted by: Time PassX
- Posted on: April 19 2010 11:50 EDT
- in response to Cameron McKenzie ( @potemcam )
Codehaus' JIRA was hacked last week too. What really makes this bad is the attackers have users' login (sometimes an email address) and one can assume they've been able to brute-force the hashed passwords stored in the JIRA database.

One should hope those users have a different password for their email account or for that matter, any other account that could be inferred from their JIRA login. I wouldn't be surprised if the attackers take the login credentials and start attempting to guess bank or email logins.

Remember, if someone figures out your primary email password, they can (1) probably figure out what other online services you use from archived emails, and (2) oftentimes use the "forgot my password" link to have a password reset sent to the compromised email address!

Reply to this Reply to original
Codehaus too?[ Go to top ]
- Posted by: James House
- Posted on: April 19 2010 15:48 EDT
- in response to Time PassX
I was contacted last week by both Apache and Atlassian about their compromised systems - and encouraged by them to change my password, and take other precautions. I'm a little disappointed that only only found out about the Codehaus problem here. Thanks for the heads-up.

Reply to this Reply to original
Atlassian hacked as well[ Go to top ]
- Posted by: Dean Del Ponte
- Posted on: April 19 2010 12:26 EDT
- in response to Cameron McKenzie ( @potemcam )
Atlassian's JIRA instance was also hacked

Reply to this Reply to original

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site | Media Kits | Reprints | Site Map

TechTarget - The IT Media ROI Experts

Discussions

News: First Apache. Now it's JBoss. Hibernate JIRA Compromised by Targeted XSS Attack.

First Apache. Now it's JBoss. Hibernate JIRA Compromised by Targeted XSS Attack. (3 messages)

Threaded Messages (3)

Codehaus too[ Go to top ]

Codehaus too?[ Go to top ]

Atlassian hacked as well[ Go to top ]