Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

4chan is circulating this picture. It shows the defaced website frontpage.

https://i.4cdn.org/g/1555048975736.png

I have a hard time with the idea that they run the webserver and the matrix server on the same computer. (Regarding users.txt)

It seems they do urgently need to hire capable infrastructure people.



They didn't host production and the website on the same server. The attacker had access to the whole network. After that was detected and cleared, the attacker was still able to change DNS records. The domain was redirected to an attacker controlled site (https://github.com/matrixnotorg/matrixnotorg.github.io) where some logs of the production servers where posted.


Correction: Not on the same server. They just managed to repoint DNS. See 2019-04-12 update on the incident article[0].

[0]: https://matrix.org/blog/2019/04/11/security-incident/index.h...


I can't access that image on my corporate network, any chance of an imgur mirror?


It's just a screenshot of the same info shown on the archive.org page linked by the title.

https://web.archive.org/web/20190412060115/http://matrix.org...

If you can't get to archive.org, just respond and I'll imgur it.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: