CyberSecurity news
FlagThis
Michael Kan@PCMag UK security
//
4chan has returned online nearly two weeks after suffering a "catastrophic" cyberattack that forced the image-sharing site offline. The messaging board revealed that the attack, which occurred on April 14th, exploited an out-of-date software package on one of its servers via a bogus PDF upload. This entry point allowed the attacker to gain access to a server, including database access and the administrative dashboard, leading to the exfiltration of database tables and much of 4chan's source code. The hacker, reportedly operating from a UK-based IP address, vandalized the site, prompting moderators to halt the servers to prevent further access.
4chan attributes the breach to a failure to install software patches due to insufficient skilled man-hours and a lack of funding. In a blog post, the site stated it has been "starved of money for years by advertisers, payment providers, and service providers who had succumbed to external pressure campaigns" due to its controversial content. This financial strain allegedly prevented timely updates to operating systems and code, making the site vulnerable. The organization claims it had been trying to deploy new servers since 2023, but the lack of funds and a slow migration process prevented the update from happening before the attack.
Following the incident, 4chan has installed the necessary security patches and replaced the breached server with updated operating systems and code. PDF uploads have been temporarily disabled, and the Flash animation board remains offline due to security concerns. The site is also bringing on additional volunteer developers to help manage the workload. Some users remain concerned about potential future attacks given the site's ongoing financial struggles. It's not confirmed who was behind this attack but a rival message board, Soyjak.party, might have been involved.
ImgSrc: sm.pcmag.com
References :
4chan attributes the breach to a failure to install software patches due to insufficient skilled man-hours and a lack of funding. In a blog post, the site stated it has been "starved of money for years by advertisers, payment providers, and service providers who had succumbed to external pressure campaigns" due to its controversial content. This financial strain allegedly prevented timely updates to operating systems and code, making the site vulnerable. The organization claims it had been trying to deploy new servers since 2023, but the lack of funds and a slow migration process prevented the update from happening before the attack.
Following the incident, 4chan has installed the necessary security patches and replaced the breached server with updated operating systems and code. PDF uploads have been temporarily disabled, and the Flash animation board remains offline due to security concerns. The site is also bringing on additional volunteer developers to help manage the workload. Some users remain concerned about potential future attacks given the site's ongoing financial struggles. It's not confirmed who was behind this attack but a rival message board, Soyjak.party, might have been involved.
ImgSrc: sm.pcmag.com
Share:
References :
- The Register - Security: Image board hints that rumors of a poorly maintained back end may be true Clearweb cesspit 4chan is back up and running, but says the damage caused by a cyberattack earlier this month was "catastrophic."
- techcrunch.com: 4chan is back online, says it’s been ‘starved of money’
- PCMag UK security: The messaging board says an attacker 'exploited an out-of-date software package on one of 4chan’s servers, via a bogus PDF upload,' resulting in critical data being exposed.
Classification:
- HashTags: #4chan #Cyberattack #DataBreach
- Company: 4chan
- Target: 4chan Users
- Product: 4chan
- Feature: Security Breach
- Type: Hack
- Severity: Major