AdGuard attacked, resets passwords of all accounts


  • TECH
  • Friday, 21 Sep 2018

AdGuard believes that attackers were able to access some of the users' accounts.

AdGuard, a popular ad blocking service, has reset the passwords of all its users which number over five million worldwide after it detected its servers being attacked.

It said it detected continuous attempts to login to AdGuard accounts from suspicious IP addresses belonging to various computers across the globe.

The company said the attacks were stopped by a rate limiter – a security measure that detects multiple login attempts using different passwords.  

“However, rate limiting is not enough when an attacker already knows what password to use. Unfortunately, this seems to be the case. The pairs of email/password used by intruders belong to known databases of leaked accounts,” it posted on its site.

“Attackers used one of the databases of leaked accounts that is available online and checked whether the email/password data could access AdGuard accounts. We believe that attackers were able to access some of the accounts.”

It said the leaked databases could have come from the numerous data breaches over the years, and it is unable to tell which accounts were accessed.

“All passwords stored in AdGuard database are encrypted so we cannot check whether any of them is present in the known leaked database. That’s why we decided to reset passwords of all users,” it posted.

AdGuard is now connected to HaveIBeenPwned, a website which collects data of all known compromised online services. “If the password that you are entering is found in the database of leaked ones, you will see a warning,” it posted.

Users will now have to reset their password in order to access their accounts, and AdGuard adds that it will introduce two-factor authentication for stronger protection.

“We physically can’t implement it in one day, but this will be our next step and we will let you know about it as soon as its done,” it said.
Article type: metered
User Type: anonymous web
User Status:
Campaign ID: 1
Cxense type: free
User access status: 3
Join our Telegram channel to get our Evening Alerts and breaking news highlights
   

Next In Tech News

Google to launch own processor for upcoming Pixel phones
Ferrari boss has no fears over electric future
Facebook's Kustomer deal may hurt competition, EU regulators say
Uber, Lyft seen boosted by return of riders, but driver shortage, stubborn virus cloud outlook
Hong Kong police arrest two men in crackdown on website selling more than 30,000 upskirt photos and videos
Teenage girls in northern Nigeria ‘open their minds’ with robotics
Grab's sales jump 39% in Q1, ahead of record SPAC deal
The robot apocalypse is hard to find in America's small and mid-sized factories
Australia Tesla battery blaze under control after three days
Cryptocurrency crime in Hong Kong hits record levels, with one victim losing HK$124mil to fraudsters

Stories You'll Enjoy


Vouchers