Linux Foundation websites hacked

[solin]

We are in the process of restoring services in a secure manner as quickly as possible. As with any intrusion and as a matter of caution, you should consider the passwords and SSH keys that you have used on these sites compromised. If you have reused these passwords on other sites, please change them immediately. We are currently auditing all systems and will update this statement when we have more information.

linuxfoundation.org

Linux Foundation infrastructure including LinuxFoundation.org, Linux.com, and their subdomains are down for maintenance due to a security breach that was discovered on September 8, 2011. The Linux Foundation made this decision in the interest of extreme caution and security best practices. We believe this breach was connected to the intrusion on kernel.org.

We are in the process of restoring services in a secure manner as quickly as possible. As with any intrusion and as a matter of caution, you should consider the passwords and SSH keys that you have used on these sites compromised. If you have reused these passwords on other sites, please change them immediately. We are currently auditing all systems and will update this statement when we have more information.

We apologize for the inconvenience. We are taking this matter seriously and appreciate your patience. The Linux Foundation infrastructure houses a variety of services and programs including Linux.com, Open Printing, Linux Mark, Linux Foundation events and others, but does not include the Linux kernel or its code repositories.

Please contact us at info@linuxfoundation.org with questions about this matter.

The Linux Foundation

Source

*** UPDATE***

We want to thank you for your questions and your support. We hope this FAQ can help address some of your inquiries.

Q: When will Linux Foundation services, such as events, training and Linux.com be back online?

Our team is working around the clock to restore these important services. We are working with authorities and exercising both extreme caution and diligence. Services will begin coming back online in the coming days and will keep you informed every step of the way.

Q: Were passwords stored in plaintext?

The Linux Foundation does not store passwords in plaintext. However an attacker with access to stored password would have direct access to conduct a brute force attack. An in-depth analysis of direct-access brute forcing, as it relates to password strength, can be read at http://www.schneier.com/blog/archives/2007/01/choosing_secure.html. We encourage you to use extreme caution, as is the case in any security breach, and discontinue the use of that password if you re-use it across other sites.

Q: Does my Linux.com email address work?

Yes, Linux.com email addresses are working and safe to use.

Q: What do you know about the source of the attack?

We are aggressively investigating the source of the attack. Unfortunately, we can't elaborate on this for the time being.

Q: Is there anything I can do to help?

We want to thank everyone who has expressed their support while we address this breach. We ask you to be patient as we do everything possible to restore services as quickly as possible.

[Fiddler]

Yes this indeed bad but I don't think its going to affect any Linux user.

[JayCub]

your right Fiddler and it's down to pass-words on their sites, Thank you Solin and i like how they responded to the intrusion with a very proffesional manner along with vital tips..

Hacking a Linux site proves nothing as far as im concerned and just serves to annoy members, and maybe remind people to change their pass-words often and strong.. But if it is for the fame reason shame on them.

[Student26]

Linux is open source, almost an opposite to the major targets we have previously seen (govs, corporations, etc.)

Really pointless waste of time, put the talents to better use.

[Bearcat]

Thanks for the news Indra, and I totally agree with Student, it is a pointless waste of time.

[hellnoire]

Yes this indeed bad but I don't think its going to affect any Linux user.

your right Fiddler and it's down to pass-words on their sites, Thank you Solin and i like how they responded to the intrusion with a very proffesional manner along with vital tips..

Hacking a Linux site proves nothing as far as im concerned and just serves to annoy members, and maybe remind people to change their pass-words often and strong.. But if it is for the fame reason shame on them.

Dead on, both of you.

Sophos was making a huge deal out of it, as if it was a major threat and whatnot, but assuming you didn't reuse the password anywhere, like you're supposed to, then no issues.

I'm not even signed up with it. So I don't even care. Let them patch and get back to work.