Featured Articles

Hands on: Nvidia Shield Tablet with Android 5.0

Hands on: Nvidia Shield Tablet with Android 5.0

We broke the news of Nvidia's ambitious gaming tablet plans back in May and now the Shield tablet got a bit…

More...
Nokia N1 Android tablet ships in Q1 2015

Nokia N1 Android tablet ships in Q1 2015

Nokia has announced its first Android tablet and when we say Nokia, we don’t mean Microsoft. The Nokia N1 was designed…

More...
Marvell launches octa-core 64-bit PXA1936

Marvell launches octa-core 64-bit PXA1936

Marvell is better known for its storage controllers, but the company doesn’t want to give up on the smartphone and…

More...
TSMC 16nm FinFET Plus in risk production

TSMC 16nm FinFET Plus in risk production

TSMC’s next generation 16nm process has reached an important milestone – 16nm FinFET Plus (16FF+) is now in risk production.

More...
Nvidia GTX 970 SLI tested

Nvidia GTX 970 SLI tested

Nvidia recently released two new graphics cards based on its latest Maxwell GPU architecture, with exceptional performance-per-watt. The Geforce GTX 970…

More...
Frontpage Slideshow | Copyright © 2006-2010 orks, a business unit of Nuevvo Webware Ltd.
Thursday, 15 April 2010 11:39

Hackers scalp Apache

Written by Nick Farell

Image

Heap-um-big problems


Hackers have
broken into a server used by the Apache Software Foundation to keep track of software bugs.

While the attack did not compromise the open-source Web server's source code repository, they did get their paws on low-privilege accounts on another server used to maintain the people.apache.org Web site. Philip Gollucci, vice president of Apache infrastructure said that None of the source code was affected in any way.

Apparently the attack used a cross-site scripting bug to gain access. They then used a password-guessing attack to break into the Atlassian JIRA software used by Apache. After that it was a simple matter of installing a password stealing program and gaining full control of the machine. For a while they had access to two other programs hosted by Apache on the same server, the Confluence wiki program and Bugzilla.

The hackers had control of the server for three days between April 6 and April 9 The unidentified attackers broke into Apache's JIRA server on April 6 and had begun stealing user passwords by the time Apache administrators noticed the issue on April 9. It is the second time that the Apache Software Foundation has been hit by hackers. Last August intruders were able to break into the Minotaur server and run their owns scripts on Apache's Web site.

Nick Farell

E-mail: This e-mail address is being protected from spambots. You need JavaScript enabled to view it
blog comments powered by Disqus

 

Facebook activity

Latest Commented Articles

Recent Comments