According to published reports from The Wall Street Journal, their news graphics computer network has been hacked.
w0rm is threatening to sell both user information and the credentials required to control the Journal's servers, and is offering user credentials and the information required to control the server. According to a tweet, which contained an alleged screen capture from the WSJ's server database, w0rm is offering access for payment in one Bitcoin: approximately $620 at the time of writing.
If w0rm has achieved the kind of capability he claims, he could, potentially, modify articles, adding new web content, and insert malicious content in pages hosted at the WSJ website. He could potentially add and delete site users as well.
Andrew Komarov, chief executive of IntelCrawler, explained that his team initially discovered the vulnerability used by the hacker and confirmed that it could give an attacker the access claimed. Komarov added his firm has been monitoring w0rm for some time.
If you're a subscriber of the Wall Street Journal's online edition, this might be a good time to change your wsj.com password.
For information on selecting a strong password, check out, "Passwords, the Bane of Any IT Manager"
Bruce Barnes, owner of ChicagoNetTech, is an active member of the SmarterTools online support team who's posts can be found on the SmarterTools Technical Support Forums.