Cyber Incident Victim: ITarian

On or around September 29, 2019, an attacker exploited a vulnerability in the vBulletin software powering Comodo's online forums, gaining unauthorized access to the platform's database. This breach resulted in the theft of account data belonging to over 170,000 forum users, representing more than half of the platform's total user base. The compromised information subsequently appeared for sale on online trading platforms, exposing affected individuals to potential identity theft and credential reuse attacks. Comodo confirmed the incident through a security notice published shortly after the breach, acknowledging that an intruder may have accessed sensitive user data stored within the forum systems. The attackers specifically targeted a newly identified vulnerability in vBulletin, though the technical specifics of the exploit were not disclosed in public notifications.

The breach's impact centered on the exposure of user registration details from the forum environment, though the exact data elements compromised were not enumerated in available disclosures. Comodo's response included direct notification to the affected user base about the potential compromise of their information. No evidence suggested the breach extended beyond the forums to other Comodo services or infrastructure. The incident highlighted risks associated with third-party forum software vulnerabilities, particularly given vBulletin's widespread adoption across online communities. Security researchers monitoring dark web markets later identified the stolen Comodo Forums dataset among offerings distributed by cybercriminals, confirming the data's illicit availability.