The infrastructure of the members-only security mailing list "Vendor-Sec" for open source vendors has been severely damaged according to a post published by Markus Meissner at the OSS Security mailing list. At Vendor-Sec, Linux and BSD distributors discussed undisclosed vulnerabilities in the kernel and open source software. Some of the information was embargoed to give vendors time to close their holes.
Meissner says a cracker apparently broke into the mailing list server at lst.de and destroyed the installation. Since then, the server has been unreachable. Meissner believes the attack is a direct reaction to his discovering the intruder.

Meissner says he discovered that the server had been broken into and informed members of the mailing list that a third party may be reading their emails

The link for this article located at H Security is no longer available.