Karamjit Posted August 1, 2015 Share Posted August 1, 2015 Hacker wanted $15,000 / €13,600 from BitdefenderA hacker that calls himself DetoxRansome has managed to crack the defenses of one of Bitdefender's servers and steal user login credentials. In a statement for HotNews, the company confirmed the breach, but stated that no more that 1% of its user accounts were leaked. Bitdefender also said the database was storing the login credentials of only small to medium business accounts, which were reset in the meantime, and no home or enterprise clients were exposed. A human error was at the core of the breachAccording to the internal investigation that followed the incident, it was found out that only one server was affected, made vulnerable by a human error during its deployment, as PCWorld notes. After acquiring the Bitdefender data, DetoxRansome tried to blackmail the company into paying $15,000 / €13,600, otherwise he would release the data (as seen in the tweets embedded at the end of the article). The hacker also posted a few accounts and their passwords in several tweets, and 250 more inside a Pastee URL (website that anonymously hosts text files).According to Hacker Film Blog, "Travis Doering and Bitdefender were able to confirm many of them as active accounts." The Bitdefender data was up for sale for 8 BitcoinContacted by email, the hacker agreed to sell the data for 8 Bitcoin, and as proof, provided a screenshot of the Bitdefender dashboard for the posworks.com.au account (see below). DetoxRansome detailed his intrusion method as "sniffing one of their major servers [and] stealing logins." In an email sent to Forbes, the hacker also claims the passwords were stored in clear text, and put the blame on Amazon's Elastic Web cloud, "which is notorious for SSL problems." This was not the first time this year an antivirus company was under attack, as earlier in June, Kaspersky Labs also suffered a breach when the Duqu group penetrated some of its internal systems using a zero-day in the Windows Kernel. Source Link to comment Share on other sites More sharing options...
212eta Posted August 1, 2015 Share Posted August 1, 2015 http://www.forbes.com/sites/thomasbrewster/2015/07/31/bitdefender-hacked/ Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.