(www.bleepingcomputer.com)

492 points vladyslavfox | 2 comments | 20 Oct 24 15:00 UTC | HN request time: 0.481s | source

Show context

TheFreim ◴[20 Oct 24 15:24 UTC] No.41895901[source]▶

> "It's dispiriting to see that even after being made aware of the breach weeks ago, IA has still not done the due diligence of rotating many of the API keys that were exposed in their gitlab secrets," reads an email from the threat actor.

This is quite embarrassing. One of the first things you do when breached at this level is to rotate your keys. I seriously hope that they make some systemic changes, it seems that there were a variety of different bad security practices.

replies(5): >>41896145 #>>41896897 #>>41897646 #>>41897785 #>>41898493 #

galleywest200 ◴[20 Oct 24 15:51 UTC] No.41896145[source]▶

>>41895901 #

>"It's dispiriting to see that even after being made aware of the breach weeks ago..."

These people are not dispirited whatsoever, if anything they are half-cocked that these script kiddies found an easy target.

replies(3): >>41896810 #>>41897552 #>>41899451 #

1. EasyMark ◴[20 Oct 24 18:43 UTC] No.41897552[source]▶

>>41896145 #

I highly doubt they are script kiddies. More than likely they are state actors or mercenaries of state actors attempting to bring down the free transmittal of information between regular folks. IA evidently has not so good security and wikipedia must be doing pretty well I guess? I can’t recall the last time one of these attacks worked on Wiki.

replies(1): >>41898090 #

2. luckylion ◴[20 Oct 24 20:03 UTC] No.41898090[source]▶

>>41897552 (TP) #

Why would they publicly call them out and lay open the way they breached them if they were "attempting to bring down the free transmittal of information between regular folks"?

They could have done much worse but they chose not to and instead made it public. Which state actor does that?

↑

Internet Archive breached again through stolen access tokens