OWASP Data Breach: Sensitive Information Exposed

By
Aleksander Kowalczyk
1 min read

News Content

The Open Worldwide Application Security Project (OWASP) suffered a data breach in late February 2024 as a result of a misconfiguration of an old OWASP Wiki web server. This exposed sensitive data of its members. The breach enabled threat actors to access resumes belonging to open source enthusiasts who joined between 2006 and 2014. The obtained information included names, email addresses, postal addresses, phone numbers, and other personally identifiable information, which could be utilized for phishing or identity theft. Although the data is outdated, OWASP plans to notify the affected individuals. However, contacting these individuals might be challenging due to the age of the data. OWASP, a software security non-profit, ensures to take necessary steps to address and mitigate the impact of this breach.

You May Also Like

This article is submitted by our user under the News Submission Rules and Guidelines.The cover photo is computer generated art for illustrative purposes only; not indicative of factual content. If you believe this article infringes upon copyright rights, please do not hesitate to report it by sending an email to us. Your vigilance and cooperation are invaluable in helping us maintain a respectful and legally compliant community.

Subscribe to our Newsletter

Get the latest in enterprise business and tech with exclusive peeks at our new offerings