AntiVirus, Compromise Reports, Malware, Programming, Security

Warning: Diigo has been Domain Hijacked – Oct 25 2012

November 6 2012: After the crisis with their domain hijacking, there are some amazing accounts coming out about what happened. This article on TechCrunch tells quite an incredible story.

October 26 2012: @Diigo on Twitter has announced that they are back in control of the Diigo.com domain as of about 5:00ET.

The domain update should have propagated through the Internet by now so Diigo.com is safe to access now. Diigo states that the total outage time was 48 hours.

It remains to be seen if people’s PCs have been infected by possible malware hosted on the hijacked sites. I certainly hope this is not the case.

October 25 2012 – Warning: do not browse to Diigo.com. The site has been domain hijacked.

The Web is going crazy with viruses and hack attacks these days. It seems like every day there is news of a new compromise.

Today I was surprised when I tried browsing to Diigo.com (a great social bookmarking site that I like to use) only to find myself redirected to site I do not recognize that has bizarre popups. It looks like the site has been compromised.

Happily Diigo has been keeping its user base updated on Twitter via @diigo .

It seems user data has not been lost and all of one’s social bookmarks are still in place. Diigo is working with its domain registrar Yahoo hosting to correct the hijacking, but progress is slow. Based on people’s reports on Twitter it seems the hijack happened sometime yesterday (22 hours ago as of 3:00 ET Sept 25 2012) and Yahoo hosting has still not corrected things. In the meantime @Diigo on Twitter is advising users to point their browsers to Diigo.net which is still operational.

Wikipedia has a short entry explaining the Diigo domain problem that is worth checking out.

When I checked the URL for the hijacker’s site, it comes up with a 0 trust rating, which is definitely not good. I wonder if there is a chance of malware or a virus attack coming from the site. Some people on Twitter are reporting that their Antivirus software is showing warnings of Trojans.

My Antivirus software did not report a problem, but I will need to run diagnostics on my machine to try to clear up any garbage that might have found its way on, and I also plan to change all of my passwords just to be safe.

This sort of thing is always annoying when it happens, but it is definitely a wake up call to anyone developing sites for the Web. It’s a bit like the wild-west out there and there is danger lurking around every corner if you are not careful.

Links

Compromise Reports, Security

Gamigo Database Hacked & User Data Compromised

July 23 2012: Last March I posted an article about the Gamigo system compromise that happened on March 2 2012. I wasn’t too happy since I have a Gamigo account as well.

Since the compromise happened there has been no news about the compromised information, but it looks like the people responsible haven’t given up causing problems for Gamigo players.

Initially the compromised data was not published by those responsible, but now the full list of 8.2 million email addresses, user-names, and 11 million encrypted passwords (thankfully still hashed) has been published on a hacking site.

Gamigo did force a password reset for all accounts after the event in March, but hackers are likely to try tracking down and compromising related user accounts on different sites, so it’s definitely a good idea to change one’s passwords anywhere one might have re-used one’s Gamigo user-name/password combination.

March 2 2012: The latest news is that in the past day(s) Gamigo user accounts have been compromised and information has been stolen by unknown attackers. The details of the attack are not yet known, but Gamigo assures users that payment information is safe. However the other information, possibly including user passwords has been compromised.

It’s my understanding that the compromise happened March 2 2012, and the Gamigo account login functionality was down for several days afterwards.

Continue reading “Gamigo Database Hacked & User Data Compromised”