Jump to content
c4forums | The Control4 Community

c4Forums Security Incident and Resolution


danlevine

Recommended Posts

To : All c4Forums.com Members

 

We were notified this morning from our Community software and hosting provider of a security incident that took place on the c4Forums.com.  

 

Here is an excerpt from the notification.

 

-----
 
Our security infrastructure team has been made aware of a select few clients that have had their communities compromised. As part of our proactive response protocol, we are reaching out to let you know the details of the situation.
 
Earlier this morning, the attacker compromised your community and was able to obtain user information including: e-mail addresses, usernames and password hashes.
 
We feel this was a “brute force” attack against each community, however, we are diligently investigating this matter and the review may take several days. In the interim, we felt it prudent to inform you of the attack.
 
What we are doing:
As part of your Community in the Cloud service, we will clean your software and account of any malicious activity leftover from the attack. We will change core account passwords such as FTP (this will be available in the client area.)
 
Although nobody is immune to cyber attacks, we understand these types of situations can be frustrating and scary. Rest assured, we will do everything we can to ease your concerns and keep your community safe, secure and operational. Please do not hesitate to reach out with any questions or concerns you may have.
 
-----
 
What c4Forums is doing
 
The administration team has changed all passwords for admin and backend purposes for the site.  Additionally as mentioned above we have authorized our vendor to clean any remanents of the attack.  
 
We recommend changing your password to the site, and if you use this password on any other sites please change those as well.
 
We are truly sorry for any inconvenience this may have has caused.  
 
Thank you so much for being a c4Forums.com member.
 
Link to comment
Share on other sites


To : All c4Forums.com Members

We were notified this morning from our Community software and hosting provider of a security incident that took place on the c4Forums.com.

Here is an excerpt from the notification.

-----

Our security infrastructure team has been made aware of a select few clients that have had their communities compromised. As part of our proactive response protocol, we are reaching out to let you know the details of the situation.

Earlier this morning, the attacker compromised your community and was able to obtain user information including: e-mail addresses, usernames and password hashes.

We feel this was a “brute force” attack against each community, however, we are diligently investigating this matter and the review may take several days. In the interim, we felt it prudent to inform you of the attack.

What we are doing:

As part of your Community in the Cloud service, we will clean your software and account of any malicious activity leftover from the attack. We will change core account passwords such as FTP (this will be available in the client area.)

Although nobody is immune to cyber attacks, we understand these types of situations can be frustrating and scary. Rest assured, we will do everything we can to ease your concerns and keep your community safe, secure and operational. Please do not hesitate to reach out with any questions or concerns you may have.

-----

What c4Forums is doing

The administration team has changed all passwords for admin and backend purposes for the site. Additionally as mentioned above we have authorized our vendor to clean any remanents of the attack.

We recommend changing your password to the site, and if you use this password on any other sites please change those as well.

We are truly sorry for any inconvenience this may have has caused.

Thank you so much for being a c4Forums.com member.

Dan. How well hashed and salted was the password DB? How long was the key?
Link to comment
Share on other sites

I've had several issues so far where it appears someone has changed email and passwords on accounts. While the incidents happened after the issue here I can't prove it was because of this security breach. However one was a changed email/password on a my.control4.com account which I've finally got cleared up.

Sent from my iPhone using Tapatalk

Link to comment
Share on other sites

  • danlevine unpinned this topic
  • 4 weeks later...
  • 4 weeks later...

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...