In a concerning turn of events, The Post Millennial, a prominent Canadian conservative news website, fell victim to a malicious cyberattack yesterday evening. The site’s landing page was defaced, adorned with the transgender flag, and featured a satirical post aimed at conservative author and social media commentator, Andy Ngo.
The breach resulted in the unauthorized disclosure of sensitive information belonging to approximately 39,850 subscribers. Among the leaked data are personal details such as gender, names, display names, email addresses, phone numbers, addresses, and passwords, all of which were stored in plain text. Additionally, subscriber payment details, including preferred payment methods and currencies, were exposed.
Disturbingly, the leak also unveiled information on government representatives from various countries, including personnel from the United States government. Their contact information, too, was laid bare for all to see.
Furthermore, the threat actor(s) behind the breach also leaked purported information on editors for The Post Millennial, though the validity of this data remains uncertain. The disclosed editor information includes usernames, IP addresses, phone numbers, countries, email addresses, and names.
What adds to the complexity of this incident is the suspicion surrounding Psyclone Inc., the parent company of The Post Millennial. Some evidence points to Psyclone Inc. being the initial access point for the breach, citing debug data found in The Post Millennial’s database dump. Additionally, the temporary outage of the adjacent website, HumanEvents, raises further speculation, although this connection remains speculative at this time.
The ramifications of this breach are significant, not only for The Post Millennial and its subscribers but also for the broader implications of data security and privacy in the digital age. The exposure of such sensitive information underscores the urgent need for heightened cybersecurity measures and robust data protection protocols, both within media organizations and across industries at large.
The Post Millennial has yet to release an official statement regarding the breach, leaving subscribers and the public awaiting further information on the extent of the damage and the steps being taken to address this security lapse.
Never forget to check out our YouTube channel, ETHICAL EMPIRE, and keep reading our exciting blogs. Until next time, stay curious, stay secure, and keep exploring the fascinating world of cyber security. See you soon, bye!