Situs Belajar Programming Sitepoint.com Konfirmasi Adanya Kebocoran Data

Sitepoint-diretas-hacker

SitePoint.com, situs web penerbitan pembelajaran programming bermarkas di Australia, telah diretas oleh seseorang yang diduga berasal dari Rusia/China.

Salah satu anggota yang mendaftar di sana memposting di halaman komunitas Sitepoint.com, ia menuliskan: "Saya ingin tahu apakah Sitepoint telah diretas atau apakah mereka menjual alamat email kami. Saya menggunakan alamat email unik untuk Sitepoint dan hari ini saya menerima email SPAM di alamat unik ini. Diduga email ini berasal dari "Blockchain Access UK Ltd" dan mereka iming-iming ingin memberikan Bitcoin."

Ratusan ribu email yang dikirim ke pengguna Sitepoint mengonfirmasi peretasan tersebut, meskipun pada saat penulisan, perusahaan belum mempublikasikan secara spesifik mengenai adanya serangan besar ini.

"Kami baru-baru ini mengonfirmasi bahwa infrastruktur SitePoint telah dilanggar oleh pihak ketiga dan beberapa data pelanggan yang tidak sensitif telah diakses sebagai bagian dari serangan ini." tulis Sitepoint.

"Sebagai tindakan pencegahan, sementara kami terus menyelidiki, kami telah menyetel ulang sandi di semua akun dan menambah panjang yang kami perlukan menjadi 10 karakter. Lain kali Anda masuk ke SitePoint, Anda perlu membuat kata sandi baru." tulis Sitepoint yang dikirimkan ke email penggunanya.

Ia melanjutkan dengan mengatakan bahwa tidak ada data kartu kredit yang telah diakses dan kata sandi yang disimpan menggunakan keamanan hashing. Kunci API yang relevan juga telah dirotasi dan sandi diubah.

Kabar peretasan ini diduga dari salah satu buku yang diposting di halaman beranda Sitepoint yang berjudul "Hacking For Dummies". Buku ini sangat lengkap sekali dengan penjelasan seputar penetrasi testing, hacking methodology, information gathering dan masih banyak lagi.

Perusahaan itu mengakui adanya kebocoran data dari situs mereka dan dengan sigap mereka langsung mengirimkan email ke seluruh pengguna yang terdaftar. Berikut isi email tersebut.
Dear SitePoint Member,

We have recently confirmed that SitePoint’s infrastructure was breached by a third party and some non-sensitive customer data was accessed as part of this attack.

As a precautionary measure, while we continue to investigate, we have reset passwords on all accounts and increased our required length to 10 characters. Next time you login to SitePoint you will need to create a new password.

Your browser will remain logged in if you have used our service recently. However, you can still create a new password manually by clicking on the ‘Account > Profile & Settings’ option and entering your details in the ‘Change your password’ section.

If you use Social Login (e.g. Google or Facebook), you will be able to login as normal.

If you have deactivated your SitePoint account, no action is required however we recommend you refer to the ‘What can I do to protect myself?’ section.

What information does this relate to?

At this point, we believe the accessed information mainly relates to your name, email address, hashed password, username, and IP address.

Did they get access to my Password?

All passwords are uniquely hashed and salted for security purposes and therefore much harder for malicious parties to access. Still, we recommend you update your SitePoint password.

Did they access any financial or Credit Card information?

No. There is currently no evidence your financial information was accessed at this stage. We do not store your Credit Card information in our system, we use a third party service (Stripe) for all credit card processing.

What can I do to protect myself?

We recommend that you change passwords from any other websites that may be a duplicate of your SitePoint password, just as a precaution.

How did this happen?

Investigations suggest this attack was a result of a third party tool we used to monitor our GitHub account, which was compromised by malicious parties. This allowed access through our codebase into our systems. This tool has since been removed, all of our API keys rotated and passwords changed.

What will happen next?

We are currently performing a full assessment of the data breach, and our infrastructure, and security. You will be notified of any additional changes or risks if they arise.

We are very sorry for any inconvenience this has caused. Please contact us at security@sitepoint.com if you have any further questions or concerns.

As always we appreciate your trust and support.

Thank you,

SitePoint Team
Dari pembicaraan di komunitas Sitepoint, salah satu anggota berbicara bahwa peretas itu ingin menjual seluruh data sebesar $650 dalam bentuk mata uang kripto yaitu Bitcoin.

Posting Komentar

0 Komentar