Joomla is a popular free and open-source content management system( eCommerce ) used for publishing web content. The team behind the CMS discloses the data breach a few days back.
The company said in his statement that more than 2,700 users who have access to resources.joomla.org website are affected by this breach.
The incident happens after a team member left an unencrypted full backup of the JRD site on an unsecured Amazon Web Services S3 bucket.
Data which Impacted with this breach Joomla
The company confirms that no financial or reputational data was exposed as a part of the breach. The Joomla team is currently investigating the incident of how this happened.
Following are the details included with the backup
- Full name
- Business address
- Business phone number
- Business phone number
- Business email address
- Company URL
- Nature of business
- Encrypted password (hashed)
- IP location
- Newsletter subscription preferences
“Most of the data was public since users submitted their data with the intent of being included in a public directory. Private data (unpublished, unapproved listings, tickets) was included in the breach,” read a company statement.
The audit report also stated, “the presence of SuperUser accounts owned by individuals outside Open Source Matters.”
The company confirms there is no third-party access to the database, even though it is recommended to change the passwords immediately if the same password used for multiple logins.
“We apologize for the inconvenience. We are deeply committed to providing the best and most secure infrastructure for our community. Thank you for your support.”
cyber attack increasing with a big number after coronavirus COVID-19 hit the world. hackers are more active and targeting the corporate sector.
Also read : How to protect yourself and your customers
I am a Cyber Security expert cover cybercrime, privacy, security and surveillance, consumer technology, and anything else that seems interesting.
 used for publishing web content. The team behind the CMS discloses the data breach a few days back.){kind=link}