16 comments

[ 3.0 ms ] story [ 50.5 ms ] thread
What monster would hack Blender?
Seriously. There's so many worthy targets out there so much more deserving and here they are attacking a top open source project.
Most website 'hacks' are not targeted, but are the result of automated scanning tools for known vulnerabilities.
Thinking on a hacker perspective, it makes more sense because he can reach wider audience.
... Autodesk?
No, more likely Microsoft Paint 3D
you laugh, but i heard Microsoft wanted to offer their services for Blender Cloud

I also heard some acquisition talks

You'll be surprised what we hear when you can step into shareholders meetings ;)

It's pretty common, microsoft is on the offensive stance these days ;) it's nasty, but "we are at war" right? i mean "they"

Someone who’s real target is Blender’s users.
Yep, seeing a lot of these pop up lately. Probably an attempted supply chain attack.

https://en.wikipedia.org/wiki/Supply_chain_attack

edit: To be clear, if it was this, it wasn't successful. Blender team checked out the downloads and everything's fine. But that's a likely motive I'd say.

Hardware you'd get for good performance with Blender also happens to be the hardware you'd get for crypto mining..
Blender users are one of the most profitable targets if you could get crypto mining malware on their PC.
I'm confused by the word "attempt". If it was just an attempt why is the site down?

Is it taking the site offline that thwarted the attempt? Or was the attack successful and they are working on mitigation and restoration?

- Perhaps they want to make sure they know what information was taken

- Perhaps they want to make sure they know what happened so they can make sure it doesn’t happen again

- Perhaps they need time to do a full restore just in case

Those three all sound like there was a successful hack.
What is an ‘unsuccessful hack’?