Feeds

Winamp advises forum password reset after mystery hack

Just a precaution, you understand

Combat fraud and increase customer satisfaction

Winamp is advising users of its media player software who frequent its forum to change their passwords after a security breach resulted in the disclosure of thousands of email addresses.

The breach only exposed users' email addresses, so the forum logon password change policy is purely a precaution, according to Winamp. The firm said that users of its media player software were not affected directly by the breach, which hit only its forum and not its main site winamp.com or its developers' site.

Beyond saying that it had detected an attack on its forum database – later determined to be isolated – Winamp says little about the likely source or motive of the cyber-assault. In a statement (extract below), the software developer apologises for the incident, which may leave an unknown number of users more exposed to spam.

We have determined that your email address was exposed as a result of this attack, so as a precautionary measure, we recommend that you change that [sic] your password on the Winamp Forums. In addition, we recommend that you change your password every few months as a best practice for keeping your information secure.

The statement, which was emailed to forum members, some of whom forwarded the message to El Reg, was republished in Winamp's forum on Tuesday. ®

SANS - Survey on application security programs

Whitepapers

Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.