The recent data breach at The Post Millennial, a conservative Canadian online news magazine, has raised concerns as the personal information of over 26 million individuals has been leaked. This breach occurred when threat actors hacked into both The Post Millennial and its American counterpart, Human Events, defacing their websites and claiming to have stolen sensitive data.
The stolen data includes full names, email addresses, usernames, account passwords, IP addresses, phone numbers, physical addresses, and genders of writers, editors, and subscribers to the news platforms. This exposed information poses a significant privacy and security risk to the affected individuals.
Troy Hunt, the creator of Have I Been Pwned (HIBP), added the leaked data to the breach notification service to alert potentially affected users. However, it is important to note that the origin of the leaked data has not been confirmed to be directly from The Post Millennial or Human Events.
While the breach resulted in the defacement of the websites and the exposure of sensitive information, The Post Millennial has not yet issued a public statement regarding the incident or warned its subscribers about the potential data exposure. BleepingComputer reached out to both The Post Millennial and Human Events for comments but has not received any response.
It is advisable for individuals who are subscribers to The Post Millennial or Human Events to reset their passwords and closely monitor their account activity. Additionally, exercising caution with all forms of communications, such as emails, calls, and SMS, is recommended to prevent potential phishing attacks or further data breaches.
As the investigation into the data breach continues, users are urged to stay informed and take necessary precautions to protect their personal information. The implications of such a large-scale data breach highlight the importance of cybersecurity measures and the need for enhanced data protection practices in the digital age.