WineHQ database hacked, passwords stolen

WineHQ database hacked, passwords stolen

Summary: Malicious hackers exploit vulnerabilities in phpmyadmin to gain access to WineHQ's database. Usernames and passwords were stolen.

SHARE:
TOPICS: Open Source
35

Add WineHQ to the list of open-source projects struggling to contain a serious security breach.

WineHQ, which manages software that's used to run Windows applications on Linux, BSD, Solaris and Mac OS X, confirmed the breach and warned that the intruders were able to hijack usernames and passwords.

"What we know at this point that someone was able to obtain unauthorized access to the phpmyadmin utility. We do not exactly how they obtained access; it was either by compromising an admins credentials, or by exploiting an unpatched vulnerability in phpmyadmin," according to Jeremy White of Codeweavers, a company that sells a supported version of Wine.

White said the company had "reluctantly provided access to phpmyadmin to the appdb developers" which offered a prime target for hackers.

'Kill tool' released for unpatched Apache server vulnerability ]

More from White's statement:

We do not believe the attackers obtained any other form of access to the system.

follow Ryan Naraine on twitter

On the one hand, we saw no evidence of harm to any database. We saw no evidence of any attempt to change the database (and candidly, using the real appdb or bugzilla is the easy way to change the database).

Unfortunately, the attackers were able to download the full login database for both the appdb and bugzilla. This means that they have all of those emails, as well as the passwords. The passwords are stored encrypted, but with enough effort and depending on the quality of the password, they can be cracked.

This, I'm afraid, is a serious threat; it means that anyone who uses the same email / password on other systems is now vulnerable to a malicious attacker using that information to access their account.

We are going to be resetting every password and sending a private email to every affected user.

In recent months, hackers have broken into the Linux Foundation websites and the kernel.org Linux archive site.

Topic: Open Source

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

35 comments
Log in or register to join the discussion
  • Hrmph...

    ....still no comment from The Linux Geek or Your Linux Advocate.
    Joe_Raby
  • RE: WineHQ database hacked, passwords stolen

    Hold, grabbing some popcorn... BRB.










    Okay, I'm back, let the show begin!
    The one and only, Cylon Centurion
  • All these Linux servers are being hacked at will

    Linux is proving to have terrible security.
    toddybottom
    • RE: WineHQ database hacked, passwords stolen

      @toddybottom

      All software contains vulnerabilities, and despite what others say, Linux is not exception.

      I stake my reputation on it. ;)
      The one and only, Cylon Centurion
    • RE: WineHQ database hacked, passwords stolen

      @toddybottom
      They proved it a long time ago when they left the telnet port open.
      LoverockDavidson_-24231404894599612871915491754222
    • RE: WineHQ database hacked, passwords stolen

      @toddybottom: So since phpmyadmin runs on Windows too, you admit it's security sucks as well? No? Thought so. RTFA the next time.
      Natanael_L
  • RE: WineHQ database hacked, passwords stolen

    What OS was it running? I hope its not linux because we are told over and over again this doesn't happen with linux because its super strong. What's that? It is linux? Oh my. Which do you prefer, eating crow or the egg on your face?

    And you wonder why I will never ever use linux for anything. These linux attacks are happening all the more frequent and they have been around for a long time its just that the linux community wanted to ignore it and keep it out of the press. It might hurt their ego.
    LoverockDavidson_-24231404894599612871915491754222
    • I wonder what would be worse?

      @LoverockDavidson_
      Admitting that Linux is getting hacked over and over again or that all these Linux sites are running IIS on Windows?

      Keep in mind too that these sites aren't even run by Linux amateurs. These are serious Linux sites run by Linux experts. Not even Linux experts can secure Linux.
      toddybottom
      • RE: WineHQ database hacked, passwords stolen

        @toddybottom

        I'm waiting for the SJVN article somehow pinning this on Microsoft.
        The one and only, Cylon Centurion
      • Perhaps they should employ the consulting services of DTS.

        @toddybottom: [i]Keep in mind too that these sites aren't even run by Linux amateurs. These are serious Linux sites run by Linux experts. Not even Linux experts can secure Linux.[/i]

        I hear he even stakes his reputation on his knowledge.
        ye
      • RE: WineHQ database hacked, passwords stolen

        @toddybottom
        Running a DB admin remotely is mostly a bad idea and has nothing to do with the OS. I think your IT comprehension level is ~0.
        kirovs@...
      • RE: WineHQ database hacked, passwords stolen

        @kirovs@... Completely agreed.
        majidazimi
      • RE: WineHQ database hacked, passwords stolen

        @toddybottom Completely agreed with 'kirovs@...'
        majidazimi
      • RE: WineHQ database hacked, passwords stolen

        @toddybottom: You don't have to be SJVN to ask an obvious question like <i>Cui bono?</i>
        masonwheeler
      • RE: WineHQ database hacked, passwords stolen

        @ye
        Did you read the article?
        kirovs@...
      • RE: WineHQ database hacked, passwords stolen

        @Cylon: Why SJVN? Anyone with half a brain can look at the situation and ask an obvious question like <i>cui bono?</i>
        masonwheeler
      • Yes.

        @kirovs@...: nt
        ye
      • RE: WineHQ database hacked, passwords stolen

        @toddybottom, @Cylon, @Ye.

        Howling with laughter here. You all beat me to it ;)

        Can't wait to hear how SJVN and DTS spin this one.

        Chances are that they won't comment and hope nobody notices.
        bitcrazed
    • RE: WineHQ database hacked, passwords stolen

      @LoverockDavidson_
      So you don't even understand that the OS was never hacked in the first place? I think you may have a cognition problem or you are trying to entertain us as the original Loverock used to do. In which case- keep up the good job!
      kirovs@...
      • RE: WineHQ database hacked, passwords stolen

        @kirovs@...
        The OS should never have allowed this to happen so linux is completely at fault here.
        LoverockDavidson_-24231404894599612871915491754222