Notice of security breach on Ubuntu Forums site

There has been a security breach on the Ubuntu Forums site, ubuntuforums.org. We take information security and user privacy very seriously, and apologise for the breach and ensuing inconvenience.

At this time,

  • We have confirmed the attackers were able to access all user email addresses and hashed passwords on the Forums site. While the passwords were not stored in plain text, good practice dictates that users should assume the passwords have been accessed and change them. If users used the same password on other services they should immediately change that password.
  • We believe the issue is limited to the Ubuntu Forums and no other Ubuntu or Canonical site or service is affected.
  • We have begun the process of notifying by email all users whose details have been compromised.
  • We are continuing to investigate exactly how the attackers were able to gain access and are working with the software providers to address that issue. Once the investigation is concluded we will provide as much detail as we safely can.

The forums site will remain down until we can safely bring it up, and updates will be posted to the ubuntuforums.org page as they are available. Once again, we apologise for the issue.

In the meantime, if you’re using Ubuntu and need technical support please see the following page for support:

Finding Help

If you’re looking for a place to discuss Ubuntu we encourage you to check out these sites:

The Ubuntu subreddit

The Ubuntu Community on Google+

Ubuntu Discourse

Talk to us today

Interested in running Ubuntu Desktop in your organisation?

Newsletter signup

Select topics you’re
interested in

In submitting this form, I confirm that I have read and agree to Canonical’s Privacy Notice and Privacy Policy.

Related posts

Ubuntu Core: an independent security analysis

This is a guest blog by Trent R.Hein, Co-CEO of Rule 4. Once in a while an opportunity comes along that brings out our inner geek like no other, which is what...

Questioning the doc

Here’s a VLOG about some changes we’re making to the MAAS documentation. It’s all about using questions at the top of articles to help direct attention. This...

CIS hardened Ubuntu: cyber attack and malware prevention for mission-critical systems

The Center for Internet Security (CIS) is a nonprofit organisation that uses a community-driven process to release benchmarks to safeguard enterprises against...