Site Hacked, Passwords Safe – For Now

Monday, November 18, 2013 @ 04:11 PM gHale

MacRumors suffered a hack attack and administrators said the site’s 860,000 users are aware they should consider their usernames, email addresses and password hashes compromised.

However, in a post published on the MacRumors forums, a user who claims to be the hacker said he will not leak any information.

RELATED STORIES
Automated Hacking Tools Visit Login Pages
Malware Targets SAP Users
Chrome Search Leads to Malware
Tough Ransomware Sinkholed

To demonstrate he is the hacker, he has published the first 16 bits of the password hash and the salt of MacRumors Editorial Director Arnold Kim. Kim later confirmed the information is accurate.

The hacker, who uses the online moniker “lol,” said he could crack the passwords, but the information will not be misused.

“We’re not logging in to your gmails, apple accounts, or even your yahoo accounts (unless we target you specifically for some unrelated reason). We’re not terrorists. Stop worrying, and stop blaming it on Macrumors when it was your own fault for reusing passwords in the first place,” the hacker said.

There has been speculation about how the attack occurred, but the hacker said the “fault lied within a single moderator.”

The hacker explains this could have been far worse. However, he highlighted the fact he simply breached MacRumors to test his skills.

“I never defaced the site, I never bragged about it anywhere, I just got in and got out,” he noted in a separate post.

Despite his claims he will not leak any of the passwords, users should change passwords as soon as possible.



Leave a Reply

You must be logged in to post a comment.