Skip to main content

Tumblr blames ‘human error’ for weekend security lapse

Tumblr LogoPopular blogging service Tumblr has cited “human error” as the cause behind a security glitch that may have revealed users’ passwords, API keys, IP addresses and other personal data.

The alarm was sounded Saturday morning via Twitter. “OMG…The Tumbeasts are spitting out passwords!,” the tweet read. The news quickly spread, with armchair hackers taking to forums to debate the extent and cause of the glitch. As it turns out, a PHP coding error was likely to blame for 748 lines of information being made visible.

Tumblr responded quickly to fix the problem and followed up with an official statement posted about five hours later. Here’s what Tumblr had to say for itself:

“A human error caused some sensitive server configuration information to be exposed this morning. Our technicians took immediate measures to protect from any issues that may come as a result.

We’re triple checking everything and bringing in outside auditors to confirm, but we have no reason to believe that anything was compromised. We’re certain that none of your personal information (passwords, etc.) was exposed, and your blog is backed up and safe as always. This was an embarrassing error, but something we were prepared for.

The fact that this occurred at all is still unacceptable, and we’ll be seriously evaluating and adjusting our processes to ensure an error like this can never happen again.”

The explanation was likely enough to assuage the fears of Tumblr loyalists, but on the Hacker News forum a contingent was left unconvinced that the breech was merely “an embarrassing error.”

Some commentators went as far as to blame Tumblr for “criminal negligence.” Others were content to point a finger at the idiosyncrasies of the PHP programming language. A few defended Tumblr, saying that the breach wasn’t as severe as it was made out to be. Either way, Tumblr had dozens of sideline developers offering their debugging expertise pro bono.

In December, Tumblr was taken offline for almost a full day following an issue with its database cluster.


Editors' Recommendations

Topics
Aemon Malone
Former Digital Trends Contributor
Meta Quest 3 vs. Vision Pro: Which is the best VR headset?
A Meta Quest 3 faces and Apple Vision Pro on a dynamic background.

We don't often pit budget-priced competitors against ultra-premium technology, but the internet is buzzing over comparisons between Meta's Quest 3 and Apple's Vision Pro. Surprisingly, the $3,000 price difference isn't the only reason that some people favor the Quest 3 over the Vision Pro.

Whether you think of the Vision Pro as a spatial computer or a VR headset, there's plenty of overlap in the Quest 3's feature set that makes it worth checking out. You might find everything you want at one-seventh the price.
Where the Vision Pro wins
A simulation of how the virtual screens look when wearing the Vision Pro. Apple

Read more
Great for browsing, get this 15-inch HP laptop for 50% off today
The HP 15-Inch Touchscreen Laptop sitting on a desk.

There are laptop deals that slash the prices of premium machines, but there are also offers that make affordable devices even cheaper. If you're shopping for the latter, then you should check out HP's offer for the HP Laptop 15z. From its original price of $500, it's down to just $250 following a $250 discount. We're not sure how much time is remaining for you to be able to get this laptop for half-price, so hurry with your purchase if you don't want to miss out on this bargain.

Why you should buy the HP Laptop 15z
The HP Laptop 15z is equipped with the AMD Athlon Silver 7120U processor and AMD Radeon Graphics, plus 8GB of RAM that's usually found in entry-level laptops, according to our guide on how much RAM do you need. If you're going to ask the HP Laptop 15z to match the performance of the top-tier models of the best laptops, you'll be left disappointed, but that's only because you need to manage your expectations with this device. It's not the fastest laptop out there, but for simple tasks like browsing the internet, watching streaming shows, and typing documents, it's going to be more than enough.

Read more
New Macs may be announced next month. Here’s what to expect
Apple Continuity image showing iPhone use as MacBook webcam.

Apple regularly launches new products in March, and it looks like this year will be no different. We don't have a specific date yet, but it's been reported that numerous new Macs and iPads are rumored to launch in just a few weeks’ time, with a bunch of enticing changes reportedly heading our way.

If you’re in the market for a new MacBook, March could be a great time to pick one of the new releases up. Here's what we're expecting to steal the limelight.
The M3 MacBook Air is coming

Read more