14 DAY TRIAL // After the intrusion on Kernel.org, two other Linux Foundation websites were attacked, leaving personal information belonging to users at the mercy of the hackers.
Members of the Linux.com and LinuxFoundation.org websites have received an email from the organization, informing them about a discovered breach in their systems on September 8.
Foundation representatives made the decision of shutting down their sites, “in the interest of extreme caution and security best practices.”
Services and programs like Linux.com, Open Printing, Linux Mark and Linux Foundation Events will not be functioning for a certain period of time as they are in the process of being restored.
It seems as Linux kernel or its code repositories were not affected by the recent hits but they are still taken down for maintenance after the attacks discovered on August 28.
The statement released on the temporary page advises members to change any password that might have been obtained by the attackers.
A message saying “We are in the process of restoring services in a secure manner as quickly as possible. As with any intrusion and as a matter of caution, you should consider the passwords and SSH keys that you have used on these sites compromised. If you have reused these passwords on other sites, please change them immediately,” welcomes the visitors of Linux.com and LinuxFoundation.org. The H Security informs us that the Foundation is also auditing the exploited systems as part of an investigation made in collaboration with legal authorities.
The announcements from the temporary site will change once any further information is available. Meanwhile, questions on the matter can be sent to the email address [email protected].
At the time of this post the websites were still down and contained the same message. It remains to be seen how long it takes for the services to be back on track and if someone will come forward to claim the evil deeds.