Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apache Foundation Attacked, Passwords Stolen

Posted by CmdrTaco on Tuesday April 13, 2010 @04:27AM from the yeah-we-meant-to-do-that dept.

Trailrunner7 writes "Combining a cross-site scripting (XSS) vulnerability with a TinyURL redirect, hackers successfully broke into the infrastructure for the open-source Apache Foundation in what is being described as a 'direct, targeted attack.' The hackers hit the server hosting the software that Apache.org uses to track issues and requests and stole passwords from all users. The software was hosted on brutus.apache.org, a machine running Ubuntu Linux 8.04 LTS, the group said."

1 of 214 comments (clear)

Min score:

Reason:

Sort:

Correction by dandart · 2010-04-13 05:21 · Score: 1, Offtopic

s/hackers/crackers/g

Additionally, Brutus is password cracking software... not mentioned in the summary.