April 27, 2010

Splunk inadvertently exposes user passwords

Splunk.com, a provider of IT infrastructure search software, disclosed late last week that some users' passwords were exposed after debug code accidentally wound up on its production web servers. The error resulted in the logging of passwords in clear text. There is no reason to believe the information was exposed to anyone other than some Splunk employees, the company said in a Friday blog post. All affected passwords have been reset. It is unclear for how long the credentials were exposed. — AM
Related Articles
Related Topics
Related Links

More in News

Privacy-bolstering "Apps Act" introduced in House

The bill would provide consumers nationwide with similar protections already enforced by a California law.

Microsoft readies permanent fix for Internet Explorer bug used in energy attacks

Microsoft is prepping a whopper of a security update that will close 33 vulnerabilities, likely including an Internet Explorer (IE) flaw that has been used in targeted website attacks against the U.S. government.

Weakness in Adobe ColdFusion allowed court hackers access to 160K SSNs

Up to 160,000 Social Security numbers and one million driver's license numbers may have been accessed by intruders.