Joomla Resources Directory Users Exposed in Leaky AWS Bucket

2020-06-03 04:15

An Amazon Web Services cloud storage bucket that was left open to the public internet has exposed thousands of Joomla users' personal information.

About 2,700 individuals who signed up to use the Joomla Resources Directory - a community forum for finding developers and service providers specialized in the Joomla content management system - had their information exposed.

"Most of the data was public, since users submitted their data with the intent of being included into a public directory," explained the Joomla security team, in a recent posting.

"Even if we don't have any evidence about data access, we highly recommend people who have an account on the Joomla Resources Directory and use the same password on other services to immediately change their password for security reasons," according to the notice.

In April, Key Ring, creator of a digital wallet app used by 14 million people across North America, was found to have exposed 44 million IDs, charge cards, loyalty cards, gift cards and membership cards to the open internet, researchers said.

News URL

https://threatpost.com/joomla-resources-directory-exposed-aws-bucket/156231/

#AWS #joomla

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Joomla		129	12	383	460	16	871