Published:
16 June 2011
Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT Security Bulletin ASB-2011.0049 62000 compromised email accounts released publicly 17 June 2011 =========================================================================== OVERVIEW AusCERT has been notified regarding a list of compromised email accounts which have been released to the public by a group of hackers who refer to themselves as LulzSec. The anonymous group released approximately 62000 compromised email accounts and their passwords. Of these 62000, there were approximately 250 email accounts belonging to Australian domains included in the list. This data is believed to have been stolen from compromised websites, for example www.writerspace.com have stated that 12000 of the emails are from a compromise which took place on their website. [1] Contrary to some media articles, there is no indication that the data came from any Australian universities. IMPACT If you have registered on www.writerspace.com you should change your password immediately. If you have used the same password on any other sites you should change those immediately also. MITIGATION AusCERT is taking measures to notify affected members of any compromised details containing email accounts under their jurisdiction. REFERENCES [1] Breaking News! http://www.writerspace.com/ AusCERT has made every effort to ensure that the information contained in this document is accurate. However, the decision to use the information described is the responsibility of each user or organisation. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iD8DBQFN+r/Q/iFOrG6YcBERAur3AJ4vi8DZPpdV/86bs60WS5Qf8x4JEwCg0saQ 1CVrkuaYf7OKXEOkZkispwU= =e+Qd -----END PGP SIGNATURE-----