It seems that last night blogs.perl.org was hacked. I first became aware of it when someone pointed me at this story a few hours ago. As you’ll see, the contents of the mt_author table have been made public.
We’re still investigating the extent of the hack. But, as a precaution, we have configured the site so that all dynamic pages return a 404 response. This will, unfortunately, prevent you from logging on to the site.
We will publish more information when we have it.
Apologies for the inconvenience.
Update:
- As I said, the mt_author table was leaked
- This contains both your username and password
- The password is salted and encrypted (with crypt)
- If you use your blogs.perl.org password elsewhere, we strongly recommend that you change it
Update 2:
Here’s a cut-down version of the published data that includes only the name columns. Hopefully you can use this to work out whether or not you have an account on the system.
Leave a Reply