Wednesday, April 16, 2014

Mumsnet tells users to reset ALL passwords as site hacked following HEARTBLEED virus.

 express_logo

Mumsnet tells users to reset ALL passwords as site hacked following HEARTBLEED virus

PARENTING website Mumsnet has reset all its members' passwords after hackers used the Heartbleed virus to access personal data.

 Mumsnet has been hacked by the Heartbleed virus[MUMSNET/PA]
A post on the website said administrators "have no way of knowing which Mumsnetters were affected" by the security breach, so have decided to reset all users' passwords.

The website has almost five million unique visitors every month.

The Heartbleed bug came to the public's attention last week, and millions of people are were urged to change all their online passwords amid fears the bug enabled hackers access to the most secure internet sites – including those used for banking.

The Mumsnet website post said: "We know this has been an enormous pain in the rear end for some of you, and we’re really sorry about that.

"We are aware that some reset emails aren’t turning up quickly enough.

"We believe it’s a problem with some email providers, who are struggling with the amount of automated mail that is being generated by lots of big sites requiring users to change passwords at this time.

"We’ve now made the reset links in the mails last for longer (48 hours) so that they don’t expire before you’ve seen them."

The post continued: "The bug allowed access to the information submitted via the login page.

"So that includes your username or email plus your password.

"It is possible that this information could then have been used to log in as you and give access to your posting history, your personal messages and your personal profile, although we should say that we have seen no evidence of anyone’s account being used for anything other than to flag up the security breach, thus far."

No comments:

Post a Comment