MangaDex is one of the largest manga scanlation (scanned translations) sites where visitors can read manga comics for free, with over 76 million visitors per month. After suffering a series of outages since March 17th, Magnadex revealed that on the 21st, a cybercriminal had gained access to an admin and developer account and the site’s source code.
Magnadex released the following statement:
Three days ago (2021-03-17), we correctly identified and reported that a malicious actor had managed to gain access to an admin account through the reuse of a session token found in an old database leak through faulty configuration of session management. Following that event, we moved to identify the vulnerable section of code and worked to patch it up, also clearing session data globally to thwart further attempts at exploitation through the same method.
Using the forementioned token, the attacker was able to gain full access to the website and download the site’s source code. The attacker also published the site’s source code on GitHub using the alias ‘holo-gfx.’ The attacker has stated that they have dumped the Magnadex database but has not published it anywhere yet. “Moving forward however, it is in both our users’ interest and ourselves that we will consider the database breached,” MangaDex warned. Analysts Notes: Considering the admins’ statement, users of the MagnaDex site should assume
Analyst Notes
Considering the admins’ statement, users of the MagnaDex site should assume that their information has been compromised and change their login credentials immediately. It is also advised that passwords should not be shared with any other login. To remember all the different passwords, a password manager should be used.
Source Article: https://www.bleepingcomputer.com/news/security/mangadex-manga-site-temporarily-shut-down-after-cyberattack/
