Kodi's MyBB Software Hacked, 400k Users' Data Stolen
The Executive Headlines
“The data breachers then entered the account to create substantial data backups that were then downloaded and deleted. Also downloaded data were existing complete backups of the database. The account has been disabled since then.”
Kodi, the open-source media player which has been spawned from the love of media, has come with a sensational revealing of data breaching. The company has confirmed that hackers have breached its data and stolen the MyBB forum database of the company which includes data and private messages.
Also Read, Microsoft Resolves Azure AD Issues Impacting Bing and Major Apps
Moreover, the hackers attempted to sell the database that includes 400,635 users on the now-defunct BreachForums cybercrime marketplace.
The data breachers then entered the account to create substantial data backups that were then downloaded and deleted. Also downloaded data were existing complete backups of the database. The account has been disabled since then.
Kodi said in an advisory, "MyBB admin logs show the account of a trusted but currently inactive member of the forum admin team was used to access the web-based MyBB admin console twice: on 16 February and again on 21 February,".
The downloaded nightly backups have team forum posts, all public forum posts, user information like forum usernames, email addresses, and an encrypted (hashed and salted) password produced by the MyBB software.
Kodi stated the company has not found any evidence of hackers getting unauthorized access to the underlying server. The company further emphasized that the legal account owner did not make malicious actions on the admin console, suggesting credential theft.
In order of caution, the team from Kodi said that work is in progress to initiate a global password reset. Users are suggested to change their passwords on other websites if they are using the same password everywhere.
Taking extra security precautions, Kodi is tightening access to the MyBB admin console, revising admin roles to limit privileges, and enhancing audit logging and backup procedures.