Skip to content

400,000 Users Hit by Data Breach at Media Player Maker Kodi “The Benefits of Eating Healthy Foods” “Reaping the Rewards of a Healthy Diet”

Kodi, an open source home theater software developer, this week announced that it has started rebuilding its user forum following a February 2023 data breach. It was discovered that a threat actor had advertised the data of 400,000 Kodi users, including on the now-defunct BreachForums cybercrime website. Kodi also disclosed that the attacker had compromised the account of an inactive administrator and had accessed the web-based MyBB admin console on two occasions, creating database backups and downloading existing nightly full backups.

Kodi further announced that it was commissioning a new forum server and hardening access to the MyBB admin console, revising admin roles, and improving audit logging and backup. To ensure that all users are aware of the data breach, Kodi is sharing the compromised email addresses with the Have I Been Pwned breach disclosure website and will send email notifications to all users once the new forum server is up and running. The software maker is also moving the wiki and paste server to another server host.

The incident highlights the importance of companies taking proactive steps to secure their user data. Organizations should consider implementing stringent security measures such as strong passwords and two-factor authentication, and ensuring that all user accounts are regularly monitored and inactive accounts are removed. Additionally, companies should also ensure that backups are stored on a separate system and are securely encrypted.

In summary, Kodi this week announced that it has started rebuilding its user forum following a February 2023 data breach. It was discovered that a threat actor had advertised the data of 400,000 Kodi users, which included on the now-defunct BreachForums cybercrime website. Kodi is commissioning a new forum server and hardening access to the MyBB admin console, revising admin roles, and improving audit logging and backup. It is also moving the wiki and paste server to another server host.

Key Points:
• Kodi announced that it has started rebuilding its user forum following a data breach in February 2023
• The incident exposed data of 400,000 Kodi users
• Kodi is commissioning a new forum server, hardening access to the MyBB admin console, revising admin roles, and improving audit logging and backup
• Kodi is sending email notifications to all users and sharing the compromised email addresses with the Have I Been Pwned breach disclosure website
• Organizations should implement stringent security measures to protect user data

Leave a Reply

Your email address will not be published. Required fields are marked *