Security News > 2020 > June > Joomla Resources Directory (JRD) Portal Suffers Data Breach
Joomla, one of the most popular Open-source content management systems, last week announced a new data breach impacting 2,700 users who have an account with its resources directory website, i.e., resources.
The company said the incident came to light during an internal website audit that revealed that a member of the Joomla Resources Directory team stored a full unencrypted backup of the JRD website on an Amazon Web Services S3 bucket owned by the third-party company.
The affected JRD portal lists developers and service providers specialized in Joomla, allowing registered users to extend their CMS with additional functionalities.
Joomla said the investigation is still ongoing and that accesses to the website have been temporarily suspended.
"Even if we don't have any evidence about data access, we highly recommend people who have an account on the Joomla Resources Directory and use the same password on other services to immediately change their password for security reasons," Joomla said in the advisory.
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/LxnzvQRnISs/joomla-data-breach.html
Related news
- UN aviation agency investigating possible data breach (source)
- Washington state sues T-Mobile over 2021 data breach security failures (source)
- Largest US addiction treatment provider notifies patients of data breach (source)
- STIIIZY data breach exposes cannabis buyers’ IDs and purchases (source)
- EU law enforcement training agency data breach: Data of 97,000 individuals compromised (source)
- Wolf Haldenstein law firm says 3.5 million impacted by data breach (source)
- Otelier data breach exposes info, hotel reservations of millions (source)
- PayPal to pay $2 million settlement over 2022 data breach (source)
- UnitedHealth now says 190 million impacted by 2024 data breach (source)
- PowerSchool starts notifying victims of massive data breach (source)