A Portal With 2,700 Records
Joomla was just surpassed by Shopify to be the second most used content management system, halting behind WordPress. It’s an open-source platform for users to build and manage self-hosted websites. And now, the security breach it reported shall affect only a few of its entire userbase, as it refers to its Resources Directory.
Potential Details to Exploit
Since the backup was unencrypted, it could expose all those sensitive details available in that portal, which Joomla says identifiable details of over 2,700 accounts. This contains the account’s Full name, their email address, business address, phone number, company website’s URL, type of business, IP address, encrypted passwords and their newsletter subscription preferences. While the names and addresses seem public information obtained from other sources, hashed passwords and IP addresses aren’t. These could be cracked by any adversary to hijack user accounts, and try for impersonation attacks or do fake activities. Joomla said it’s investigating the incident, and advised users to change their passwords as a precaution. Via: ZDNet