14 DAY TRIAL // Jeremy White, a Wine project developer, has announced that the WineHQ database system has been compromised by hackers.
According to White, the method used to gain access is currently unknown, but they do know that the hackers had access to phpMyAdmin utility. It wasn't done by compromising admin credentials, nor by exploiting an unpatched vulnerability in phpMyAdmin.
“We had reluctantly provided access to phpMyAdmin to the appdb developersb but it is a prime target for hackers, and apparently our best efforts at obscuring it and patching it were not sufficient,” said White.
The database remained intact, but the attackers downloaded the full login database for both the appdb and Bugzilla. This means they have all of the emails, as well as the passwords. They are encrypted, but with a little effort, they could be revealed.
The Wine developers have urged everyone to change they password, and expressed their regret!