Menu
Avast takes community forum offline after data breach

Avast takes community forum offline after data breach

The company says it will move the forum to a more secure software platform

Prague-based antivirus company, Avast, said, on Monday, it took its community forum offline after a data breach, but payment information was not compromised.

Usernames and nicknames, email addresses and encrypted passwords were obtained in an attack over the weekend, wrote Avast CEO Vince Steckler on a company blog. The attack affected less than 400,000 of Avast's 200 million users.

"We realize that it is serious to have these usernames stolen and regret the concern and inconvenience it causes you," Steckler wrote.

How the forum was breached remains unknown, Steckler wrote. The leaked passwords were hashed, which means that hackers obtained cryptographic representations of passwords that have been run through an algorithm. For example, the password "Rover" run through the SHA-1 algorithm is "ac54ed2d6c6c938bb66c63c5d0282e9332eed72c."

Steckler didn't specify the algorithm Avast uses to hash passwords, but warned that "it could be possible for a sophisticated thief to derive many of the passwords."

Converting those hashes into their original passwords is possible using decoding tools and powerful graphics processors. But the longer and more complicated the password -- such as one with a mix of capital letters, numbers and symbols -- the harder it is to crack.

People who reuse the same password from Avast's forum on other sites are advised to change them immediately, he wrote. When the forum is back online, users will be prompted to change their passwords.

Steckler wrote the forum was hosted on an isolated, third-party platform for many years. Avast plans to rebuild the forum using a new software platform, which will be faster and more secure.

Send news tips and comments to jeremy_kirk@idg.com. Follow me on Twitter: @jeremy_kirk


Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Tags intrusionsecuritydata breachAvast

Featured

Slideshows

Sizing up the NZ security spectrum - Where's the channel sweet spot?

Sizing up the NZ security spectrum - Where's the channel sweet spot?

From new extortion schemes, outside threats and rising cyber attacks, the art of securing the enterprise has seldom been so complex or challenging. With distance no longer a viable defence, Kiwi businesses are fighting to stay ahead of the security curve. In total, 28 per cent of local businesses faced a cyber attack last year, with the number in New Zealand set to rise in 2017. Yet amidst the sensationalism, media headlines and ongoing high profile breaches, confusion floods the channel, as partners seek strategic methods to combat rising sophistication from attackers. In sizing up the security spectrum, this Reseller News roundtable - in association with F5 Networks, Kaspersky Lab, Tech Data, Sophos and SonicWall - assessed where the channel sweet spot is within the New Zealand channel. Photos by Maria Stefina.

Sizing up the NZ security spectrum - Where's the channel sweet spot?
Show Comments