I just got this wonderful email from Mozilla:<\/p>\n
The Spread Firefox Team became aware this week that the server hosting
\nSpread Firefox, our community marketing site, has been accessed by
\nunknown remote attackers who attempted to exploit a security
\nvulnerability in TWiki software installed on the server. The TWiki
\nsoftware was disabled as soon as we were aware of the attempts to access
\nSpreadFirefox.com. This exploit was limited to SpreadFirefox.com and
\ndid not affect mozilla.org web sites or Mozilla software.<\/p>\nWe have scanned Spread Firefox servers and at this time do not believe
\nany sensitive data was taken, but as a precautionary measure we have
\nshutdown the site and will be rebuilding the web site from scratch. We
\nalso recommend that you change your Spread Firefox password and the
\npassword of any accounts where you use the same password as your Spread
\nFirefox account. We will notify you again when the site is back up with
\ninstructions on how to change your password. (Note: We do use MD5
\nhashing on the passwords, but MD5 cannot protect all passwords against
\noff-line dictionary style attacks.)<\/p>\nAfter Spread Firefox was compromised in July, we instituted procedures
\nto ensure that we apply all security fixes to the software running the
\nsite (Drupal and PHP) as soon as they become available. Unfortunately,
\nthose procedures overlooked the installation of the TWiki software since
\nit is not used by the main Spread Firefox site. When the system is
\nrebuilt, all the software will be audited to ensure that security
\nupdates will be applied in a timely manner. We deeply regret this
\nincident and any inconvenience this may have caused you. Sincerely,<\/p>\nSpread Firefox Team
\nMozilla Foundation\n<\/p><\/blockquote>\nNice… very nice.<\/p>\n
[tags]Mozilla, Firefox, Hacking[\/tags]<\/p>\n","protected":false},"excerpt":{"rendered":"
I just got this wonderful email from Mozilla: The Spread Firefox Team became aware this week that the server hosting Spread Firefox, our community marketing site, has been accessed by unknown remote attackers who attempted to exploit a security vulnerability in TWiki software installed on the server. The TWiki software was disabled as soon as […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[2,11,8],"tags":[],"class_list":["post-92","post","type-post","status-publish","format-standard","hentry","category-computer-stuff","category-personal","category-security"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_likes_enabled":true,"jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/posts\/92","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/comments?post=92"}],"version-history":[{"count":0,"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/posts\/92\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/media?parent=92"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/categories?post=92"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.odrakir.com\/blog\/wp-json\/wp\/v2\/tags?post=92"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}