Hackers attacked the popular online comic website, XKCD forum and stole about 560,000 usernames, emails, and IP addresses, and hashed passwords. XKCD publicized the attack on the weekend, after security researcher Troy Hunt, who was responsible for the maintenance of the data vulnerability notification site Have I Been Pwned, warned the site. Now, this forum has been offline.
The forum said that they will not be re-launched until they can check the vulnerability and ensure that the forum is secure.
“The xkcd forums are currently offline. We’ve been alerted that portions of the PHPBB user table from our forums showed up in a leaked data collection. The data includes usernames, email addresses, salted, hashed passwords, and in some cases, an IP address from the time of registration. We’ve taken the forums offline until we can go over them and make sure they’re secure. If you’re an echochamber.me/xkcd forums user, you should immediately change your password for any other accounts on which you used the same or a similar password.”