Joomla security breach exposes unencrypted personal data stored on S3 bucket
-Business email address
-Business phone number
-Nature of business
-Encrypted password (hashed)
-Newsletter subscription preferences
@okpierre Do you have any additional details, like an announcement, blogpost of CVE?
What is unclear to me: were those S3 buckets public readable?
Unencrypted backups on a third party are bad in itself, but probably not a security incident.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!