Comodo Forums Data Breach – Approximately 245,000 Users Affected

Cyber Safety firm Comodo announced a data breach that affected approximately 245,000 registered customers.

Comodo is without doubt one of the most Cyber Safety companies know for its products fancy Antivirus, Net Safety, Endpoint Safety, and Net set Safety.

In keeping with Comodo reviews the intrusion takes station over the final weekend at 4:57 am ET on Sunday, September 29, 2019.

Hackers exploited the no longer too long ago disclosed vBulletin a long way-off code execution flaw in Comodo forums and exfiltrates the user’s non-public data.

vBulletin is a forum application bundle per MySQL and PHP, fancy varied CMS this bundle old to assemble Net forums.

Closing week a hacker publically disclosed an RCE Zero-day Exploit in vBulletin forum which works on all versions from 5.0.0 till 5.5.4. An attacker could maybe exploit this vulnerability by sending a malformed HTTP POST inquire to assemble the arbitrary code within the centered forum.

vBulletin launched a security patch to manage with the vulnerability on Variations 5.5.2, 5.5.3, and 5.5.4. Individual’s advised to practice the patches at as soon as.

Comodo Forums Recordsdata Breach

An unknown attacker received acquire admission to to the Comodo forums database by exploiting the vBulletin vulnerability. The corporate is currently investigating to glimpse which data are accessed.

“Individual accounts on the forums contain data such as username, name, electronic mail contend with, final IP old to acquire admission to the forums and if old, doubtlessly some social media usernames in very tiny eventualities. All user passwords within the database were kept encrypted. Comodo forums currently contain approximately 245,000 registered customers,” reads Comodo file.

As a objective apply, Comodo recommends user’s to reset the login credentials.

On one other hand in a favored hacking forum, 170,000 Comodo customers memoir data used to be listed for sale, the advertisement states that the info used to be retrieved from Comodo forums.

• ID (unfamiliar identifier)
• Name (username)
• Country
• The IP contend with of the final login (IP contend with old at the final log in)
• Password (password and its modifier for the hash characteristic)
• Birthdate
• Safety inquire (security inquire)
• Safety acknowledge (hashed acknowledge to a security inquire)
• Registration date
• Messenger usernames (usernames in messengers)
• Entire time logged in

You may maybe apply us on Linkedin, Twitter, Fb for every day Cyber Safety and hacking news updates.

Associated Learn

Hackers Net net hosting Wrong Defense power Veterans Net set to Fall Malware