Powered by MOMENTUM MEDIA
cyber daily logo
Breaking news and updates daily. Subscribe to our Newsletter

Internet Archive suffers third October cyber attack

After dealing with a long distributed denial-of-service (DDoS) attack before then suffering a data breach affecting 31 million, the Internet Archive appears to have suffered a third data breach just in October.

user icon Daniel Croft
Mon, 21 Oct 2024
Internet Archive suffers third october cyber attack
expand image

Earlier this month, the Russia-based SN-Blackmeta hacking group claimed a DDoS attack on the Internet Archive, which resulted in its Wayback Machine and other sites and services being inaccessible.

Not long after, those who attempted to access the Internet Archive were greeted by a pop-up warning of a data breach affecting 31,081,179 account owners.

“Have you ever felt like the Internet Archive runs on sticks and is constantly on the verge of suffering a catastrophic security breach?” the pop-up said.

============
============

“It just happened. See 31 million of you on [Have I Been Pwned]!”

Now it appears that the Internet Archive has suffered a third incident after hackers exploited API tokens that had not been rotated following the previous breach to gain access to its Zendesk support platform.

With the access, the threat actors gained access to support tickets dating back as far as 2018 and had the potential to download them.

These tickets may have contained personal identification documents.

Using the Internet Archive Team’s Zendesk email, the threat actors announced the latest breach.

“It’s dispiriting to see that even after being made aware of the breach two weeks ago, IA has still not done the due diligence of rotating many of the API keys that were exposed in their GitLab secrets,” said the email.

“As demonstrated by this message, this includes a Zendesk token with perms to access 800K+ support tickets sent to [email protected] since 2018.

“Whether you were trying to ask a general question, or requesting the removal of your site from the Wayback Machine – your data is now in the hands of some random guy. If not me, it’d be someone else.

“Here’s hoping that they’ll get their shit together now.”

While October has seen the Internet Archive suffer a hat-trick of cyber incidents, the group also suffered a cyber attack in May this year, which saw its sites taken down for several days.

“Thankfully, the collections are safe, but we are sorry that the denial-of-service attack has knocked us offline intermittently during these last three days,” said Internet Archive founder and digital librarian Brewster Kahle.

“With the support from others and the hard work of staff, we are hardening our defences to provide more reliable access to our library. What is new is this attack has been sustained, impactful, targeted, adaptive, and importantly, mean.”

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

newsletter
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.