Data over a million AndroidForums accounts is on the street
Phandroid’s AndroidForums website has been hacked and attackers have accessed the account information of more than a million registered users. The passwords were encrypted on the server.
The hackers managed to break into AndroidForums via a known exploit. Phandroid says the hole has been closed and recommends that users change their passwords. Other systems within the network would not have been invaded. Usernames, email addresses and salted password hashes, among other things, were seen, as well as less sensitive data such as IP addresses and information about forum activities. The administrators of AndroidForums do not rule out that data has been smuggled out of the systems.
The administrators believe it was an attempt to get their hands on a large number of email addresses, but they also do not rule out the possibility that the hackers did their action for fun. First, the passwords of people involved in AndroidForums have been replaced and the administrators are recommending users to change their passwords via UserCP or the ‘forgot your password?’ option. It is also advised to change passwords on other sites if they are similar. The forum has a total of 1,034,235 registered members, although many of them will not be active.