Cybersecurity provider Comodo said this week that the account login details of up to 245,000 users registered to comment on Comodo’s forums have been exposed.
The Clifton, New Jersey-based company said an unknown attacker exploited the vBulletin zero-day software vulnerability and potentially breached the Comodo forums database. vBulletin is one of the most popular server applications for website commenting, Comodo said.
Comodo said it became aware of the potential data breach on September 29, four days after vBulletin released a patch to address the newly discovered vulnerability. But Comodo only applied the recommended fixes after the security hole had already been exploited.
[Related: Comodo Cybersecurity Debuts Partner Program In Channel-Only Push]
“We have measures in place to ensure that vulnerabilities in third-party software, such as vBulletin, will be patched immediately when patches become available,” the company wrote in a security advisory released Monday night. Comodo did not immediately respond to a request for further comment from CRN.
The hacked database contains information about forum users, including username, real name, email address, hashed passwords, last IP address used to access forums and some social media usernames in very limited situations. Comodo said all database user passwords are encrypted.
Comodo said its forums currently have around 245,000 registered users. Immediately after detecting the intrusion, Comodo said its IT infrastructure team took the forums offline in hopes of mitigating the exploit.
At the same time, Comodo applied the recommended security patches. The company has also temporarily disabled the registration of new users on the affected forums.
Comodo recommends that any person registered on its forums by September 29 at the latest to immediately change their password. The company urged users to select strong random passwords and not share their passwords across different internet accounts.
“We deeply regret any inconvenience or distress this vulnerability may have caused you, our users,” Comodo said in its security advisory.