In accordance with a latest disclosure by the corporate, Stack Overflow suffered a security incident. The positioning serves as a significant Q/A platform for programmers and builders. The officers confirmed that the Stack Overflow knowledge breach uncovered some consumer information to the hackers.
Stack Overflow Knowledge Breach Disclosed
As disclosed lately, the favored informative platform Stack Overflow suffered a cyber assault resulting in customers’ privateness being breached and confirmed the incident uncovered consumer info to the attackers.
The officers first disclosed the safety incident on Might 16, 2019, in a safety discover. As revealed at the moment, they seen an assault gaining ‘some stage of manufacturing entry’. They confirmed persevering with with the investigations to convey up extra particulars.
The subsequent day, on Might 17, 2019, one other security notice uploaded on their web site. It shared extra particulars and confirmed the Stack Overflow knowledge breach. As revealed, a bug allowed the attacker to intrude into the system.
The intrusion originated on Might 5 when a construct deployed to the event tier for stackoverflow.com contained a bug, which allowed an attacker to log in to our improvement tier in addition to escalate their entry on the manufacturing model of stackoverflow.com
The intrusion continued for a couple of week, and caught consideration solely on Might 11, 2019, when the attackers tried a modification.
Between Might 5 and Might 11, the intruder contained their actions to exploration. On Might 11, the intruder made a change to our system to grant themselves a privileged entry on manufacturing.
Safety Measures Underway
Upon noticing the incident, the corporate shortly stopped the intrusion and commenced investigations. Whereas Stack Overflow confirmed no unauthorized entry to their database, the attackers might nonetheless influence some customers.
We’ve got recognized privileged net requests that the attacker made that might have returned IP handle, names, or emails for a really small variety of Stack Change customers.
As they’ve now progressed with the investigations, they affirm the incident affected some 250 customers. They assured these involved that they are going to be notifying the affected customers of the matter.
Though the investigations nonetheless proceed on their half, nonetheless they’ve taken the required steps to make sure community safety. These embody containment of unauthorized entry, community and database audit, bug fixes, and involving third-party forensic crew, and public disclosure of the matter.
Take your time to touch upon this report.
