Unprotected management panel gave access to source code uTorrent – update




A surfer appears to have had critical systems torrent client uTorrent. Virtually unlimited access to This was in theory a manipulated version of the tool can be distributed or would dns records of the company can be adjusted.

Web users in question is the owner of RaGEZONE saying a few months ago by accident on a system to be encountered that contained information that could be of BitTorrent systems. Obtained access Thus he gained access to some financial documents and to Github environment of uTorrent, the torrent client BitTorrent.

“I looked on to see what was going on and saw to my surprise that I was able to release builds public”, writes “MentaL” in his own forum. “I even had the master keys, also dns level. When I realized what I was watching, I decided that I had to inform the company.”

Because the contact with BitTorrent by the board administrator stiff and he went with a bid of $ 500 fobbed felt, he decided to make his discovery. Publicized In his forum post support he explain how he has obtained. Systems access his findings with some screenshots, without further detail

According to TorrentFreak that could be accessed by a management panel of another service was not adequate security. Through management panel that the Github account with admin rights was accessible. The screenshots show that ‘mental’ had access to the Github environment in early March. In the same period, a leak in Github publicized made, though it seems that there would be independent of standing. BitTorrent has now declared that they have taken to remedy.
Update, 16:00: In a previous version of this article stated that the hack was probably possible because of a leak discovered in late February Github. This is not the case. The article has been adjusted.



In: Technology & Gadgets Asked By: [17595 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »