A group of Pakistani hackers attacked the openSUSE forums on Tuesday morning

Jan 7, 2014 18:38 GMT  ·  By

It appears that a Pakistani hacker named H4x0r HuSsY has just attacked the official forums of the openSUSE Linux operating system, as you can see from the screenshot above.

As reported by The Hacker News website, the OpenSuSE forums were hacked earlier today, January 7, 2014, using a known vulnerability in the vBulletin 4.2.1 forum software. The hacker left the following message on the sitemap of the openSUSE Forum: "OpenSuse Official Forum Hacked by H4x0r HuSsY - Packistani LeeT InsiDe y0 b0x! - We are Team MaDLeeTs"

The openSUSE team took action immediately and removed the vulnerability. At the moment, the openSUSE forums are fully functional, and no user data has been compromised. The following message is now displayed on the main page:

"NOTICE: We found a vulnerability in the forum SEO plugin we have been using and have had to discontinue it's use. This has no impact on the forums but existing links in Google, Yahoo, Bing, etc. as well as any bookmarks will no longer work. The search engines will get our sitemap and it shouldn't take long for them to depreciate the old URLs and start replacing them with new. We apologize for the inconvenience."

Update: We've talked with Jos Poortvliet, the community manager of openSUSE Linux, who confirmed on Google+ that the data of 79,500 users had not been compromised, "+Marius Nestor as we noted, openSUSE uses a Single Sign On which resides on another (not compromised) server. We don't know the exact extent of the data the hacker got, but passwords (hashed nor text) are not among it." Update 2: Apparently, the hacker managed to access the entire database of users, as well as all the email addresses, but no data has been leaked at the moment.