Author Topic: Important Security Notice About Comodo Forums Accounts  (Read 28662 times)

Offline prodex

  • Comodo's Hero
  • *****
  • Posts: 510
Re: Important Security Notice About Comodo Forums Accounts
« Reply #45 on: October 08, 2019, 02:55:58 AM »
There opens a wide field. I do not believe that these data are only known through this website.
I do not think that even you are really anonymous on the Internet and that there is nothing to be found about you. Except, you do not do anything in the I-net as only surfing with TOR, VPNs (if they are safe, people are behind it as well), obfuscate as much as possible. But then the use of the Internet is so limited that I could leave it at once. Not a single one of my accounts has the same password and these are very safe. An importent point.

On the other hand, I use TOR in certain cases i.e. if I want to inform myself about something and certain words could be misinterpreted.

For example, I can not reach certain pages with TOR because this is detected and then the access is blocked.
Most sites require cookies and java-script. Without them you have only limited use or none at all. Online banking not possible. Acrobat Reader knows your IP address etc, etc.
Without tracking some things will not work.
Facebook "reads" on pages with her "thumbs up pic", etc., etc.
Since the current problem is the much lower.

Now, however, everything is really said from my side as I think about it. I do my best to be protected, don't open funny websites, I do not download software from websites I do not know about and use a modified software from me and this not to "lax".

Edit: Of course I hope that my datas are sure when visiting any website but do I know it?

« Last Edit: October 08, 2019, 10:05:04 AM by prodex »

Offline chilinux

  • Newbie
  • *
  • Posts: 11
Re: Important Security Notice About Comodo Forums Accounts
« Reply #46 on: October 08, 2019, 09:07:47 PM »
There opens a wide field. I do not believe that these data are only known through this website.
I do not think that even you are really anonymous on the Internet and ...

Edit: Of course I hope that my datas are sure when visiting any website but do I know it?

From an end user perspective using a web browser, it makes perfect sense to question if in a post-Equifax breach world if the concept of Personally Identifiable Information still really exists.  If you want to question the worth of laws like GDPR for yourself, that is perfectly fine.  But at the end of the day, regardless of what additional steps you take yourself to protect your data, you and everyone else would like to hope data is secure on the websites they visit.

I'm on the flip side of the coin from being a client, I need to provide solutions to customers in which being compliant with PCI-DSS and GDPR is not optional or up for debate.  For these customers, the idea of protecting PII like hashed passwords is critical.  If they run a forum and there is a data breach then that has consequences for their brand.

In a NSS Labs security value map, Comodo came up as 1 of 5 products that is over 98% in security effectiveness during their tests.  But they also show it at being over twice as expensive as three of those products.

It would help me greatly if I could better understand what is being provided for that price, why Comodo uses such strong language for what they deliver and why this data breach still occurred.

If Comodo is not using the forums to perform a real world test of their own products or if Comodo doesn't take security seriously enough for their forums to use their own products, then it would be good to know that.  But so far I can't obtained any straight answer in this regard.


« Last Edit: October 08, 2019, 09:13:48 PM by chilinux »

Offline clockwork

  • Comodo's Hero
  • *****
  • Posts: 2220
  • Oxygen requires Chuck Norris to live
Re: Important Security Notice About Comodo Forums Accounts
« Reply #47 on: October 08, 2019, 09:25:57 PM »
You need to update v bulletin again. There is a second patchlevel that prevents remote actions.
"If there is a problem, it`s something interesting. Try to circumvent or fix it.
In the old ages there has been no support. That`s why we got the brain we have today.
Otherwise we would only be able to call a number and listen.
But there was no phone...."

Offline chilinux

  • Newbie
  • *
  • Posts: 11
Re: Important Security Notice About Comodo Forums Accounts
« Reply #48 on: October 08, 2019, 09:39:20 PM »
You need to update v bulletin again. There is a second patchlevel that prevents remote actions.

Good catch.

However, this forums (plural) site sets a "SMFCookie10" which is what would be expected for a site running SImple Machines Forum.

It seems to be forum (singular) that has a "sessionhash" cookie as would be expected on a site running vBulletin.

The announcement for vB security patch level 2 is at:
https://forum.vbulletin.com/forum/vbulletin-announcements/vbulletin-announcements_aa/4423646-vbulletin-5-5-x-5-5-2-5-5-3-and-5-5-4-security-patch-level-2

Offline chilinux

  • Newbie
  • *
  • Posts: 11
Re: Important Security Notice About Comodo Forums Accounts
« Reply #49 on: October 09, 2019, 09:18:54 PM »
However, this forums (plural) site sets a "SMFCookie10" which is what would be expected for a site running SImple Machines Forum.

It should also be noted that if Simply Machines Forum is updated to version 1.1.0 (released in 2006) or higher, the cookie should be called "SMFCookie11" instead of "SMFCookie10"

Version before 2.0.15 are stated to be vulnerable to CVE-2018-10305 and there several more CVEs for SMF previous to 1.1.0.

So in addition to needing to possibly update vBulletin for the second security patch level, now might also be a good time to look at upgrading Simple Machines Forum on this site too.

Offline ZorKas

  • Comodo's Hero
  • *****
  • Posts: 1642
Re: Important Security Notice About Comodo Forums Accounts
« Reply #50 on: October 10, 2019, 07:51:45 AM »
It should also be noted that if Simply Machines Forum is updated to version 1.1.0 (released in 2006) or higher, the cookie should be called "SMFCookie11" instead of "SMFCookie10"

Version before 2.0.15 are stated to be vulnerable to CVE-2018-10305 and there several more CVEs for SMF previous to 1.1.0.

So in addition to needing to possibly update vBulletin for the second security patch level, now might also be a good time to look at upgrading Simple Machines Forum on this site too.

https://forums.comodo.com/report-comodo-forum-web-site-issues/what-happened-to-the-forum-merged-topic-t124910.0.html;msg891837#msg891837
Windows 10 Pro x64 Build 19042.804 - Comodo CIS Pro v.12.2.2.7098 - Linux 20.4

Offline chilinux

  • Newbie
  • *
  • Posts: 11
Re: Important Security Notice About Comodo Forums Accounts
« Reply #51 on: October 10, 2019, 01:37:21 PM »
https://forums.comodo.com/report-comodo-forum-web-site-issues/what-happened-to-the-forum-merged-topic-t124910.0.html;msg891837#msg891837

Uh.  Wait.  What??

According to the a post from EricJH in that thread, they finally updated to SMF 2.0.13 just last month?  That version was released back at the beginning of 2017!  And as I stated before, that version has a publicly stated vulnerability.  How does a CVE from 2018 with a CVSS v2.0 exploitability subscore of 10 out of 10 get ignored when finally updating in the second half of 2019?!  Seriously, I can not understand the logic.  Does this make sense to someone else?

Offline User Name

  • Comodo Family Member
  • ***
  • Posts: 61
Re: Important Security Notice About Comodo Forums Accounts
« Reply #52 on: October 28, 2019, 12:48:36 PM »
Wtf! https://thehackernews.com/2019/10/Comodo-vbulletin-hacked.html
Why didnt send Comodo emails out so that Users are aware of this/it?...

I guess even now alot dont even have a clue what happend and many are still in danger because of this information datahack .

Thats not really user friendly.
Try to change your attitude and not the sky above you.- Ceneca

Offline prodex

  • Comodo's Hero
  • *****
  • Posts: 510
Re: Important Security Notice About Comodo Forums Accounts
« Reply #53 on: October 28, 2019, 02:29:31 PM »
As for me I am still and I feel still protected.

Offline Dustyn

  • Comodo's Hero
  • *****
  • Posts: 220
Re: Important Security Notice About Comodo Forums Accounts
« Reply #54 on: October 28, 2019, 04:02:37 PM »
I changed mine.
I would have thought Comodo would have placed a rather large and important banner at the top (at the very least) of forums.comodo.com to grab users attention. Seem like something most other forums would do?

Offline ddabrahim

  • Comodo Member
  • **
  • Posts: 31
Re: Important Security Notice About Comodo Forums Accounts
« Reply #55 on: March 05, 2020, 02:13:33 AM »
Quote
I would have thought Comodo would have placed a rather large and important banner at the top
They should have also sent emails out and also could potentially send a notification to their AV products to pop up maybe but they did not. WTF? Seriously? Just a forum post?
If online accounts and databases have been compromised the least any company must do is send emails out but I did not received any. I didn't know about this hack until now.

I am very disappointed.
Fortunately my login credentials here are different than any "important" places so no harm can be done with this information they obtained here.
Wondering if I purchase a license key would I get a notification if that database was compromised? Now days even if someone just know you name, address and email and what services you paid for and subscribed to and what type of payment if it was debit, credit card or paypal is enough to scam you. Do Comodo notify us if this information is leaked?
« Last Edit: March 05, 2020, 02:21:04 AM by ddabrahim »

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek