Stack Overflow, a popular question and answer site for programmers, unveiled a digital attack in which bad actors were given access to its production systems.
Mary Ferguson, VP of Engineering at the company, revealed the incident on May 16. In a statement on the Stack Overflow website, she explained that someone had been given access to the platform on production level on 11 May. She clarified that the company has investigated the degree of access that the unknown parties have acquired. As a result of this effort, the website security staff found that those people had not compromised customer data.
"The safety of our customers and users is of the utmost importance to us," explains Ferguson. "After we have completed our research cycle, we will provide more information."
This is not the first time bad actors have attacked a question and answer website such as Stack Overflow. For example, in December 2018, Quora announced that a malicious party had gained unauthorized access to one of its systems. Adam D & # 39; Angelo, CEO of Quora, said those behind the security incident may have affected the account information, public content, and non-public content of approximately 100 million users.
Out of caution for this possibility, Quora has informed all users of who the data may have been compromised. It also logged out all involved users and invalidated their passwords if they used one as a source of authentication.
In her statement, Ferguson did not provide further details about how the digital attackers infiltrated the systems of Stack Overflow, but she did reveal that the platform was addressing all known vulnerabilities. This statement emphasizes the importance of organizations using a vulnerability management program in terms of discovering, reporting on, prioritizing and ultimately responding to known security vulnerabilities. This program should ideally be a continuous process so that organizations stay up to date with the latest known shortcomings that affect their hardware and software.
Click here for more information about what an adult vulnerability program looks like and what it can do.