Ubuntuforums.org compromised

[parad0x]

I saw this email just now in spam. I had registered on ubuntuforums.org when I installed Ubuntu for free cloud storage on their server. Here is the email.

Hello,
You are receiving this message because you have an account registered with this address on ubuntuforums.org.

The Ubuntu forums software was compromised by an external attacker. As a result, the attacker has gained access to read your username, email address and an encrypted copy of your password from the forum database.

If you have used this password and email address to authenticate at any other website, you are urged to reset the password on those accounts immediately as the attacker may be able to use the compromised personal information to access these other accounts. It is important to have a distinct password for different accounts.

The ubuntuforums.org website is currently offline and we are working to restore this service. Please take the time to change your ubuntuforums.org account password when service is restored.

We apologize for any inconvenience to the Ubuntu community, thank you for your understanding.


The Canonical Sysadmins.

[vezzy]

You're a little too late to the party, I'm afraid.

[parad0x]

You're a little too late to the party, I'm afraid.

I got this email at the correct time but I haven't paid attention to what is in my spam folder, yesterday when I saw it, I shared it.

[Mordred]

You're a little too late to the party, I'm afraid.

I got this email at the correct time but I haven't paid attention to what is in my spam folder, yesterday when I saw it, I shared it.

It's a bit awkward though. The hack happened on the 20th of July (on a Saturday) and was reported quite fast. Even ArsTehnica had gotten around to publishing an article already by Sunday night (source).
A bit of a slow reaction time with those e-mails from ubuntuforums.org it seems.