---

Home Security

ZDNet: EarthLink flaw exposes domains

By

“A one-two punch of poor security left up to 81,000 domains
hosted by Internet service provider EarthLink Inc. open to
defacement and exploitation for at least a week, ZDNet News learned
on Tuesday.”

The vulnerability resulted from a recently discovered flaw
in an open-source e-commerce package combined with a misconfigured
hosting server operated by EarthLink subsidiary MindSpring. As
a result, files containing the encrypted passwords for 81,000
accounts were readable by any Web browser.”

“White-hat hacker and security expert Rain Forest Puppy said the
extent of the security breach would rely on how MindSpring and its
parent company EarthLink had configured its servers.”

Complete
Story

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis

Must Read

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Our Brands

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.