Slashdot Mirror


Apache Foundation Attacked, Passwords Stolen

Trailrunner7 writes "Combining a cross-site scripting (XSS) vulnerability with a TinyURL redirect, hackers successfully broke into the infrastructure for the open-source Apache Foundation in what is being described as a 'direct, targeted attack.' The hackers hit the server hosting the software that Apache.org uses to track issues and requests and stole passwords from all users. The software was hosted on brutus.apache.org, a machine running Ubuntu Linux 8.04 LTS, the group said."

1 of 214 comments (clear)

  1. Should'a been running IIS! by Kenja · · Score: 5, Funny

    cause that would have confused the hell out of the attackers.

    --

    "Have you ever thought about just turning off the TV, sitting down with your kids, and hitting them?"