The forums at ZoneAlarm, which is owned by Check Point and whose products are used by over 100 million people, have been hacked. As a result, user data fell into the hands of attackers.
Fortunately, despite the considerable user base of ZoneAlarm, the leak affected a forum hosted on forums.zonealarm.com (currently unavailable because the company fixes the problem), which has only about 4,500 users. Reportedthat among the compromised data was information about email addresses, password hashes, dates of birth and IP addresses of users.
Although neither ZoneAlarm nor its parent company Check Point have yet to release detailed information about the incident, emails have already been sent to all affected users to notify them of the incident.
Although it is reported that leaked passwords “remain encrypted,” users of the ZoneAlarm forum are still advised to immediately change the passwords for their accounts. However, the forum is currently unavailable, and the company is still working on fixing the problem.
Edition The hacker news, citing company representatives, reports that the forum was compromised through the use of the CVE-2019-16759 RCE vulnerability, discovered and fixed in the vBulletin forum engine at the end of September this year. As it turned out, until recently, ZoneAlarm used an outdated version of vBulletin – 5.4.4, which allowed attackers to crack the forum.
Let me remind you that earlier, due to this vulnerability, the official Comodo forums have already suffered, as well as Italian and Dutch resources for sex workers (prostitution is legal in these countries).