Confirmed by The Hacker News, the forum site of ZoneAlarm has suffered a data breach exposing user discussions.
ZoneAlarm, the internet security software company, owned by Israeli cybersecurity firm Check Point Technologies, offers various protection solutions for users to protect themselves online, such as antivirus and firewall.
Ironically, hackers were able to exploit a known RCE vulnerability CVE-2019-16759 in the vBulletin Internet forum software platform. The vulnerability had been disclosed on September 23, 2019, however the administrators of ZoneAlarm did not apply the patches – thus leaving the forum vulnerable to attacks.
Neither ZoneAlarm or Check Point have officially disclosed the security incident, but rather quietly sent an email alert to all impacted users over the weekend.
The email notified ZoneAlarm forum users about the unauthorised access their names, hashed passwords, email addresses and date of births. In addition, they were urged to change their forum account passwords immediately.
ZoneAlarm has confirmed that the breach has only impacted users registered with the “forums.zonealarm.com” domain.
The email notification read: “The website became inactive in order to fix the problem and will resume as soon as it is fixed. You will be requested to reset your password once joining the forum.”
A spokesperson for ZoneAlarm told The Hacker News: “ZoneAlarm is conducting an investigation into the matter. We take pride in the fact that we took a proactive approach once this incident was detected and within 24 hours and alerted the forum members.”
The same vulnerability was also exploited by unknown threat actors to hack the Comodo forum website, which led to the exposure of login account information for over 145,000 users.
The post #Privacy: Check Point’s ZoneAlarm suffers data breach appeared first on PrivSec Report.