Joomla , which is now the third most used CMS, has disclosed a data breach last week . It reported that an employee handling its Resource Directory portal has left an unencrypted backup onto the company’s AWS S3 bucket ! The team is investigating the incident now to find out that anyone has accessed the database. If did, it could expose 2,700 records of those who’ve signed up for that portal.
A Portal With 2,700 Records
Joomla Reported Security Breach in its Resources Directory Portal
Joomla was just surpassed by Shopify to be the second most used content management system, halting behind WordPress. It’s an open-source platform for users to build and manage self-hosted websites. And now, the security breach it reported shall affect only a few of its entire userbase, as it refers to its Resources Directory.
Potential Details to Exploit
While the names and addresses seem public information obtained from other sources, hashed passwords and IP addresses aren’t. These could be cracked by any adversary to hijack user accounts, and try for impersonation attacks or do fake activities. Joomla said it’s investigating the incident, and advised users to change their passwords as a precaution.
Via: ZDNet
