What bugs me is this statement:
> Summary is: an attacker accessed the production infra that runs (link: http://matrix.org) matrix.org, hence the rebuild. Source code & packages are unaffected.
> We do not think user data was targeted, but are playing it safe.
They don't think "user data was targeted"? I mean chat is super sensible information, how can you assume this?
What could have been the case is that their possible vulnerable Wordpress instance got compromised?
I hope they had their Linux host properly secured, judging by their documentation on hosting I don't see their strengths in hosting infrastructure, but I don't know who is actually hosting this infrastructure.
https://www.shodan.io/host/104.20.20.236
https://www.shodan.io/host/104.20.21.236
PS: Kudos for their quick public communication, I hope there is going to be a recap soon.
from Hacker News - New Comments: "WordPress" http://bit.ly/2IhXJyO
via IFTTT
No comments:
Post a Comment