Unable to load image

The Internet Archive apparently suffered from a data breach :marseykey:

https://www.bleepingcomputer.com/news/security/internet-archive-hacked-data-breach-impacts-31-million-users/

Orange site reacts

Quote from the article

Hunt told BleepingComputer that the threat actor shared the Internet Archive's authentication database nine days ago and it is a 6.4GB SQL file named "ia_users.sql." The database contains authentication information for registered members, including their email addresses, screen names, password change timestamps, Bcrypt-hashed passwords, and other internal data.

The hackers added a message saying "See 31 million of you on HIBP!" (Have I Been Pwned)

https://i.rdrama.net/images/17285146851010585.webp

https://nitter.poast.org/vxunderground/status/1844122743727673366#m

Another tweet

Archive.org is temporarily offline. It was also suffering from a DDOS attack. The Internet Archive made a statement about the DDOS attack but not the hack.

https://i.rdrama.net/images/17285148520557113.webp

https://nitter.poast.org/internetarchive/status/1844134181451989331#m

Yesterday's DDOS attack on @internetarchive repeated today. We are working to bring archive.org back online.

https://nitter.poast.org/Sn_darkmeta/status/1844080692772401399#m

The BlackMeta hacktivist group claimed to be behind the DDOS attack because the US supported Israel :marseyconfused:

They are under attack because the archive belongs to the USA, and as we all know, this horrendous and hypocritical government supports the genocide that is being carried out by the terrorist state of "Israel".


Update (02:18 UTC): It's back online. Update tweet is below.

https://nitter.poast.org/brewster_kahle/status/1844183111514603812#m

What we know: DDOS attack–fended off for now; defacement of our website via JS library; breach of usernames/email/salted-encrypted passwords.

What we've done: Disabled the JS library, scrubbing systems, upgrading security.

Will share more as we know it.


Edit 2: Screenshot of a deleted tweet by BlackMeta

https://nitter.poast.org/textfiles/status/1844200200203796660#m

https://i.rdrama.net/images/17286240690310392.webp

The Internet Archive is also down again. More update tweets:

https://nitter.poast.org/brewster_kahle/status/1844326137499177312#m (October 10, 10:36 UTC)

Sorry, but DDOS folks are back and knocked archive.org and openlibrary.org offline.

@internetarchive is being cautious and prioritizing keeping data safe at the expense of service availability.

Will share more as we know it.

https://nitter.poast.org/brewster_kahle/status/1844485102312751421#m (October 10, 21:08 UTC)

Update: @internetarchive's data has not been corrupted. Services are currently stopped to upgrade internal systems.

We are working to restore services as quickly and safely as possible.

Sorry for this disruption.

89
Jump in the discussion.

No email address required.

Oh no! Do you think the attacker got copies of all snappy's screenshots? :marseypearlclutch:

Jump in the discussion.

No email address required.

Link copied to clipboard
Action successful!
Error, please refresh the page and try again.