PSA Cerberus Hacked (26th March 2013)

[D-U-R-X]

Quick head up for those who didn't already see the post (http://androidforums.com/android-ne...each-prompts-network-wide-password-reset.html) in the Android News & Talk section

Anyone who uses Cerberus should head over to the site and change your password straight away, as the company have revealed that they've been hacked!

Per the Phandroid article - Cerberus for Android has been hacked

Sorry if this is old news to you, but better to get the word out!

 

[UncleMike]

Today I received the following email appearing to be from Cerberus (I replaced my username with <username> for this post). While I applaud their proactive approach to this, I find it a bit suspicious, with potential to be phishing.

First: Why would there be a "forgot password" link available AFTER I've signed in to my account?

Second: There's no indication/notice on the site itself that there's been any breach.

I've looked at the included links several times to see if I'm missing some typo or misspelling that might lead me to a phishing site instead of the real site, but they look legitimate. However, this doesn't rule out the possibility that their site has been hijacked.

Has anyone else received a similar email, or have any further information on this?

Hi <username>,

Our Security Team recently discovered and blocked suspicious activity on Cerberus servers. The investigation found no evidence that your account was in any way accessed or compromised.

However, the attacker(s) were able to gain access to usernames and encrypted passwords for a subset of our users. No other personal data (emails, device information, etc.) has been accessed.

While the accessed passwords are encrypted, as an extra precaution we have immediately secured these accounts invalidating the current passwords.

Please create a new password by signing into your account at www.cerberusapp.com and selecting the "Forgot password?" option, or go directly here: https://www.cerberusapp.com/forgotpwd.php . Submit the form and you will receive an email with further instructions to set your new password.

After you reset the password, you can verify that no unauthorized commands have been sent to your Android device. Open Cerberus on your device, log in and select the "View Cerberus log" option at the bottom of the app settings.

We sincerely apologize for the inconvenience of having to change your password, we take security of our users very seriously and are constantly working to improve it.

If you have any questions, please do not hesitate to contact Cerberus Support at support@cerberusapp.com

The Cerberus Team

 

[Unforgiven]

I think what they email says is that you will be unable to log into your account with your old password as they have secured the account. As a good precaution, I would manually navigate to their site instead of following any links in the email that may lead you to an outside phishing site. By manually, I mean physically type "www.cerberusapp.com" into your browser.

 

[funkylogik]

^^ this.
I just dont follow email/sms links to anwhere that wants my login info :thumbup:

 

[UncleMike]

I don't follow them either. I was just examining the links for evidence of a scam. I'm now convinced that it's not a scam, as the announcement appeared in both their Google Groups support forum on their Google+ page.

 

[Pep]

I got the same email. And did not use the link but when I went to log in as normal it did not recognise my password and had to reset and create a new one.

Pep

 

[Deleted User]

Good advice here on avoiding links, especially if you're not sure. I saw the news about the breach on Android Police, so that problem's legit.

(yikes, just saw my typos)

 

[Clementine_3]

I got the same email. And did not use the link but when I went to log in as normal it did not recognise my password and had to reset and create a new one.

Pep

Same for me. Got the email, went to the site (didn't use the email link) and was not able to sign in so created a new p.w.

I am very careful not to click such links, even if they look legit.

 

[lexluthor]

I didn't get any email and my normal password still works.

 

[Deleted User]

I believe they only emailed those that were affected

 

[D-U-R-X]

Merged similar threads

 

[AngryHatter]

I didn't get any email and my normal password still works.

Same here.

If their DB was pierced, prudence dictates alerting all users.