Please create an account to participate in the Slashdot moderation system


Forgot your password?

Submission user accounts compromised->

An anonymous reader writes: The team released a bulletin this evening notifying users of a breach in their infrastructure. From the bulletin:

The Security Team and Infrastructure Team has discovered unauthorized access to account information on and This access was accomplished via third-party software installed on the server infrastructure, and was not the result of a vulnerability within Drupal itself. This notice applies specifically to user account data stored on and, and not to sites running Drupal generally. Information exposed includes usernames, email addresses, and country information, as well as hashed passwords... All passwords are both hashed and salted, although some older passwords on some subsites were not salted

Users are encouraged to update their passwords and the passwords of any accounts that could be linked via the compromised information.
Link to Original Source

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted. user accounts compromised

Comments Filter:

We warn the reader in advance that the proof presented here depends on a clever but highly unmotivated trick. -- Howard Anton, "Elementary Linear Algebra"