Opensuse Gets Hacked

[blackhat101]

Just signed into Suse to find that the Novell Webserver has been hacked.

This is what they left:

[Artificial Intelligence]

I knew that Suse had something to do with Atomic energy and got mandate to decide a blocade against Iran

[blackhat101]

Are you kidding, I'll have to check that out and tell the boys at my Suse forum, as they have no idea why. :o

[arctic]

I wonder why they chose the SUSE server and not e.g. the Windows server. They would get more publicity if they hack a Microsoft one. Oh, of course that does not mean that I encourage anyone to hack any server.

[blackhat101]

A nearby Novell employee was quoted as saying "D***it, Jim, I'm a technical writer, not a network security monkey!"

I am under the impression from the buzz i am hearing, that they never even thought that OpenSuse would be a target, thus making it very hackable.

Edited October 2, 2005 by blackhat101

[blackhat101]

Got this in my e-mail today. they hadn't updated their software.

 

 

 

Hi,

 

As you probably know, several Novell hosted web sites got defaced by

a vandal on the weekend.

 

The vandalized hosts wiki.novell.com, opensuse.org, and forge.novell.com

are actually virtual hosts living on one machine, making this one

affected machine.

 

The intruder gained access to the system by exploiting a known

vulnerability in the "Xoops" blog software installed on another

virtual host on this system (www.novell.com/prblogs/).

 

This software was not upgraded to the latest security fixed version.

 

The host affected is fully separate from our RPM and security fix

delivery machines, so the integrity of our distributions and

update repositories was not affected.

 

Sincerely,

Marcus Meissner, SUSE Security Team