Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Phandroid User Forums Breached – 1M Accounts Likely Targeted

Phandroid, a web site dedicated to Android news and discussion, is urging all of its users – more than a million of them in fact – to change their passwords after a server hosting their online forum was hacked earlier this week. News of this latest compromise comes after a string of security incidents this month, leaving some to wonder what’s next.

Phandroid, a web site dedicated to Android news and discussion, is urging all of its users – more than a million of them in fact – to change their passwords after a server hosting their online forum was hacked earlier this week. News of this latest compromise comes after a string of security incidents this month, leaving some to wonder what’s next.

The successful attack on Phandroid was made possible due to a vulnerability on the forum’s server, which led to the database compromise. On Tuesday, the forum’s administrator said that the vulnerability was patched, and that developers combed the database and file systems for malicious edits. None were found.

“I was informed by our sever/developer team that the server hosting androidforums.com was compromised and the website’s database was accessed. While the breach is most likely harmless there are important and potential pitfalls,” the admin, Phases, said in a post.

The breach exposed the forum’s database user table, which led the website to assume the worst. The data housed in the table includes, usernames, passwords (random unique salts per users, with an unknown hashing method), registration IP address, email addresses, and more.

“This was, in our current opinion, most likely an e-mail harvesting attempt. A spammer could theoretically attempt to bulk e-mail all [users] with the user database…With a username and hashed password one could open a session with accounts on other sites that use the same credentials – if they gain file level access to that site first. These were salted passwords which adds to the complexity, but nonetheless we recommend playing it safe.”

This has been a nightmare week for several organizations. Included with the likely exposure of 1 million accounts on Phandroid, Yahoo is investigating a breach that led to the loss of 450,000 records, while social networking site Formspring lost 420,000 hashed passwords. On top of this, Best Buy reported an uptick in hacking attempts on their users accounts, and popular web hosting control panel Plesk was linked to a run of 50,000 website compromises.

If anything, security teams are going to enjoy some generous overtime, but it’s unfortunate that it is because of digital pain and suffering.

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join SecurityWeek and Hitachi Vantara for this this webinar to gain valuable insights and actionable steps to enhance your organization's data security and resilience.

Register

Event: ICS Cybersecurity Conference

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

People on the Move

Jared Bartel has been named CISO at Idaho State University.

Automated phishing protection and scam prevention company Bolster has appointed Rod Schultz as CEO.

Bugcrowd has appointed Trey Ford as CISO for the Americas.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.