The μTorrent team has announced that its community forums have been hacked, which exposed private information of hundreds of thousands of its users. By far, uTorrent is the most used BitTorrent client around with over 150 million active users a month. As per the data available, the forum has over 388,000 registered members with tens of thousands of visitors per day.
Earlier this week, the uTorrent team, which is part of BitTorrent Inc, was notified of the issue by one of their vendors. While the vulnerability didn’t originate at the uTorrent forums, it was indirectly compromised. Hackers were able to get the whole user database.
μTorrent Forum Hacked : Change your password immediately if you are a μTorrent forum user
The company announced the hack in an important security advisory on its forum as below: The vulnerability appears to have been through one of the vendor’s other clients, however it allowed attackers to access some information on other accounts.
As a result, attackers were able to download a list of our forum users. We are investigating further to learn if any other information was accessed. Our vendor has made backend changes so that the hashes in the file do not appear to be a usable attack vector.
As a precaution, we are advising our users to change their passwords. While the passwords may not be used as a vector on the forums, those hashed passwords should be considered compromised. Anyone using the same password for forums as well as other places is strongly advised to update their passwords and/or practice good personal security practices.”
The company has not confirmed the number of accounts compromised and data stolen in this hack. If you are the user of μTorrent and have the account on μTorrent Forums, you should change your Forums password now. Further, if you use the same passwords for other websites, you must change the passwords of all other websites.
“The vulnerability appears to have been through one of the vendor’s other clients. However, it allowed attackers to access some information on other accounts,” μTorrent forum writes “As a result, attackers were able to download a list of our forum users.”
Earlier this week, the uTorrent team, which is part of BitTorrent Inc, was notified of the issue by one of their vendors. While the vulnerability didn’t originate at the uTorrent forums, it was indirectly compromised. Hackers were able to get the whole user database.
μTorrent Forum Hacked : Change your password immediately if you are a μTorrent forum user
The company announced the hack in an important security advisory on its forum as below: The vulnerability appears to have been through one of the vendor’s other clients, however it allowed attackers to access some information on other accounts.
As a result, attackers were able to download a list of our forum users. We are investigating further to learn if any other information was accessed. Our vendor has made backend changes so that the hashes in the file do not appear to be a usable attack vector.
As a precaution, we are advising our users to change their passwords. While the passwords may not be used as a vector on the forums, those hashed passwords should be considered compromised. Anyone using the same password for forums as well as other places is strongly advised to update their passwords and/or practice good personal security practices.”
The company has not confirmed the number of accounts compromised and data stolen in this hack. If you are the user of μTorrent and have the account on μTorrent Forums, you should change your Forums password now. Further, if you use the same passwords for other websites, you must change the passwords of all other websites.
“The vulnerability appears to have been through one of the vendor’s other clients. However, it allowed attackers to access some information on other accounts,” μTorrent forum writes “As a result, attackers were able to download a list of our forum users.”