security incident on forum.eset.com

After the Avast forum, now it seems something similar happened to ESET. The forum is active but users are advised to change their passwords:
https://forum.eset.com/topic/2590-security-incident-on-forumesetcom

 

Also other ESET sites (in Spain) were defaced:
-http://hackread.com/indonesian-hmei7-hacks-eset-spain-websites/-

 

For some reason it feels better having the forum hosted by a 3'rd party as it is them that will get hacked. I don't really look at these forum hacks with harsh eyes anymore since we see news like this almost everyday now. As long as one doesn't use the same pass elsewhere there's not much to worry about. Registering with an "alias" is also good of course, shame I didn't.

 

I use different password on different forums and never register with my personal mail.
Those attacks are getting really frequent lately. Monthly change of passwords will soon become standard security maintenance procedure.

 

Password changed. I wish these sites would quit giving my email address to the whole world to spam.

 

Thanks, I was able to change it before I even got the email about it (still waiting on the email).

 

The bulk email has been sent to all ESET Forum members - as far as I understand.

For those with ESET Forum accounts should login as soon as possible and change your passwords for a strong one.

 

Yes, I'm going to give up my posting handle since one board that I'm attached to has been compromised.
Not likely. A password reset is all that is required for now while ESET investigates.

 

Siljaline, I meant for you to change your password on other forums if you use the same username, and password on other forums. I did not mean for you to change your username. When I said, "them" I was referring to your passwords on other forums. If you use a different username than the one you use on Eset's forum then you would not need to change your password to begin with since they would not likely identify that account belonging to you.

I deleted the post you quoted from this thread to prevent confusion. I did not post in this thread. I started my own thread on this topic before I knew a thread on it already existed. One of the mods moved my post to this thread. My post looked strange/out of place in this thread because it was explaining that Eset's forum had been hacked, and members should change their password. That information was already given in the first post of this thread. Someone reading it here would think why the hell is he telling us that for. Everyone reading the thread already knows that.

 

Haha yeah I was think something like that before when I read it. But now I know why, thanks for sharing the reason behind it, cheers

 

Yeah, people probably thought I was drunk, or something lol

 

This is getting to be a habit! Ugh......

 

After the Avast forums, the ESET forums...

 

Yeah but I am sure eset is not going to get unwanted fuel and bash like avast topic did

 

Yes, because they have responded to this incident much better than Avast.

 

Better like what? The forum was hacked for both and that's it. Except avast! team has taken the forum offline and will replace the software with supposedly more secure one. How is that a bad response?

 

Avast decided to blame forum software developer for incident and decided to wash dirty laundry in public. OTOH, ESET did not...

 

And who should they blame? The onion seller? The waitress in the nearby cafe? Microsoft? Of course they'll blame them, it's their software, not avast!'s. The fact they had a total mess with changelogs and version numbers is already calling for troubles...

 

Here I'm agree with you. Avast indeed pointed to the right problem.

 

Since this is not Avast forum hack thread I won't go into further discussion. Personally I like ESET's response to hack and how they managed everything much better than how Avast took care of their incident.

 

Interesting that everything seems to focus on ESET forum but not a bleep of 4 ESET domains in Spain been hacked at the same time.
And it is not the first time as the same happened last year. Well... I am sure there is also someone/something to blame here other than ESET

 

It's starting to look like it may pay to avoid forums as much as possible, or at least pare down the number you visit and join.

 

ESET is continuing it's internal investigation of the forum outage. All that have changed your passwords as I've cited in this thread should be fine.

If other actions are required all ESET Forum account holders will receive an alert email from the board.

The incident draws no parallel to the AVAST Forum issue - make no mistake.
https://www.wilderssecurity.com/threads/can-anyone-get-to-avast-forum-today.364250/