Internet Archive Hit by Cyber-Attacks: Zendesk Tokens Exposed
The Internet Archive has faced a series of cyber-attacks recently, including data breaches and website defacement. The latest incident involves the exposure of API access tokens for Zendesk, potentially compromising user support tickets.
Ev Kontsevoy, CEO of Teleport, warned that the threat actor might have accessed over 800 support tickets due to unrotated API keys. The hacker behind the Internet Archive breach claimed to have obtained an exposed GitLab configuration file containing these tokens. The Internet Archive confirmed a technical incident leading to the compromise of its Zendesk support system, but user data like passwords and archive contents remained unaffected. Users and media outlets received an email with a stolen Zendesk token, suggesting that 800K+ support tickets sent to [email protected] since 2018 were accessible. Security researcher Vx-underground indicated that attackers may still have persistent access to the Internet Archive's systems. Despite speculation, no known groups or individuals have claimed responsibility for the breach.
The Internet Archive breach remains under investigation, with no official attribution to a specific group or individual. While the stolen Zendesk token has been circulating in hacker forums, no sensitive user data has been compromised. The Internet Archive and security experts continue to monitor the situation and urge users to remain vigilant.
Read also:
- Pablo Escobar's Former Estate 'Hacienda Nápoles' to Be Transformed by Women's Organization
- Emergency services of the future revealed by Renault with the introduction of the Vision 4Rescue vehicle.
- Compromised Wi-Fi Router Causes Airport Delays, Highlights Aviation Cybersecurity Gaps
- Dortmund Customs Find Wage, Employment, and Benefit Fraud in Hotel and Gastronomy Sector
