Another Linux Project Hacked

Jeremy White, CodeWeavers founder and CEO, announced yesterday that yet another Linux project has been hacked. He said in a post to the Wine-users mailing list that he is “sad to say that there was a compromise of the WineHQ database system.”

White explained that it appears the database was accessed by either cracking into or through a vulnerability in phpMyAdmin. He says that the database wasn’t harmed or alterned during the break-in, but “the attackers were able to download the full login database for both the appdb and bugzilla. This means that they have all of those emails, as well as the passwords.”

A password reset and an email to affected users are planned. Access to phpMyAdmin has been blocked to outside users as well.

It sounds like an inconvenience for lots of people, especially those who re-use passwords, but not a catastrophe. In fact, the tone of the email seemed to indicate, “move along, nothing to see here.”

%d bloggers like this: