October 19, 2018
Hot Topics:

Apache Project Server Hacked, Unencrypted Passwords Stolen

  • April 14, 2010
  • By Developer.com Staff

Hackers broke into an Apache Software Foundation server, at the same time, they were able to access an Atlassian server that had a database of unencrypted user passwords.

Network World's Robert McMillan has the story.

"The attack did not compromise the open-source Web server's source code repository," McMillan reported, "but it did give hackers access to a server used by the project to keep track of bugs, and they also obtained low-privilege accounts on another server used to maintain the people.apache.org Web site, according to Philip Gollucci, vice president of Apache infrastructure. 'None of the source code was affected in any way,' he said."

Atlassian employs several Apache developers and hackers were able to access a database containing unencrypted usernames and passwords.

In a blog post, Atlassian CEO Mike Cannon-Brookes said, "We made a big error. For this we are, of course, extremely sorry. The legacy customer database, with passwords stored in plain text, was a liability."

View Article

Comment and Contribute


(Maximum characters: 1200). You have characters left.



Enterprise Development Update

Don't miss an article. Subscribe to our newsletter below.

By submitting your information, you agree that developer.com may send you developer offers via email, phone and text message, as well as email offers about other products and services that developer believes may be of interest to you. developer will process your information in accordance with the Quinstreet Privacy Policy.


Thanks for your registration, follow us on our social networks to keep up-to-date