One of the openSUSE sites, news.opensuse.org, was compromised by hackers, but "there was no breach of any other part of openSUSEs infrastructure," says openSUSE chairman Richard Brown.rn As the openSUSE team was enjoying FOSDEM in Brussels, Belgium, one of their sites, news.opensuse.org, was compromised by hackers. The site content was replaced with this code and the Kurdish flag: openSUSE News: Hacked By MuhmadEmad href="https://news.opensuse.org/2017/02/01/opensuse-cloud-images-are-ripe-for-users/"> HaCkeD by MuhmadEmad HaCkeD By MuhmadEmad Long Live to peshmarga src="http://zonehmirrors.org/defaced/2015/11/14/demilosightings.com/kurdistantour.net/uploads/statics_image/kurdistan_flag_waving.gif" width="25%" /> KurDish HaCk3rS WaS Here kurdlinux007@gmail.com FUCK ISIS ! The openSUSE team acted quickly to restore the site. When I talked to Richard Brown, openSUSE chairman, he said that “the server that hosts ‘news.opensuse.org’ is isolated from the majority of openSUSE infrastructure by design, so there was no breach of any other part of openSUSEs infrastructure, especially our build, test and download systems. Our offered downloads remain safe and consistent and there was no breach of any openSUSE contributor data.” The team is still investigating the reason for the breach so I don’t have much information. The site ran a WordPress install and it seems that WordPress was compromised. This site is not managed by the SUSE or openSUSE team. It is handled by the IT team of MicroFocus. However, Brown said that SUSE management certainly doesn’t want any such incident to happen again and they are considering moving the site to the infrastructure managed by SUSE and openSUSE team. In most cases, the openSUSE-related sites are part of openSUSE infrastructure that is managed by the community members but also has the backing of the SUSE sysadmins. On the other hand, SUSE sites are part of the SUSE infrastructure and are fully managed by SUSE sysadmins. This is not the first time an openSUSE site has been compromised, there was an instance earlier when openSUSE forums were compromised and hackers stole the forum user database. However, since the forum user database didn’t contain private information or passwords, there were no serious issues other than public embarrassment. As expected, that site was not managed by the openSUSE or SUSE teams. In addition, as an openSUSE user, I have often encountered issues with servers. At times I have experienced downtime and really slow sites. I think it’s about time SUSE/openSUSE take over their infrastructure and invest in improving it. Related content Opinion These are the most exciting Linux powered devices Did you know that Tesla cars ran on Linux?rn By Swapnil Bhartiya May 22, 2017 4 mins Linux Open Source Opinion How Rackspace flew through turbulence in the private cloud Bryan Thompson, General Manager, OpenStack Private Cloud at Rackspace, talked about the second generation of cloud and some turbulence that OpenStack recently experienced.rn By Swapnil Bhartiya May 22, 2017 4 mins Open Source Cloud Computing Data Center Opinion How Dell’s Project Sputnik came to life I met and talked to Barton George, the project’s initiator and leader, to understand the backstory. By Swapnil Bhartiya May 22, 2017 10 mins Linux Open Source Computers and Peripherals Opinion Elementary OS is trying to create a business model for open source app developers There is no dearth of Linux based operating systems, you will find dime a dozen. However there are only a few major ones that matter and elementary OS is among them. rn By Swapnil Bhartiya May 20, 2017 4 mins Linux Open Source Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe