URGENT: New data leak

[KitKat1985]

New data has just been leaked on the DadSec page - all the Mumsnet partner companies.

This is a huge breach and must have come from within your server as this wouldn't have just been phished.

This isn't from their Twitter feed just to be clear.

Please MN, just pull all your router plugs out and get it sorted!

I don't know about the twitter page but the other page is still there.

It's not called that. This is the thread: www.mumsnet.com/Talk/_chat/2452283--THE-LIST-please-dont-post

the list

Murfles it's alphabetical here.

Really, you think people are going to click links like that ?

I knew this was a server leak. MN - do you have a way to secure the server? Honestly?

This was clearly never a phishing attempt, there were too many flaws with it.

It may well now be worth calling in someone who can urgently secure the server and prevent further breaches if there isn't the internal resource.

Never mind, x post.

1. what proof is there that list is genuine and taken from a MN source?
2. what personal information could MN have been sharing?
3. is this a leak or just a collation of already available information?

I wasn't convinced my account was compromised earlier due to phishing, now I'm even less convinced

I agree Whirly - I didn't remember what my MN password until it was posted by Dadsec. I had to re-login this week but my browser saves my passwords so there were no keystrokes to log! No doubt there's something I may be unaware of with letting safari store your passwords, but the argument that we are somehow responsible has been boiling my piss all day.

whatever next. I fear MNetters will depart in droves.

It's the same link that the original leak was on. It's just a new box at the top with company email addresses in it.

There's nothing to see really, mumsnet are going to have to smooth things over with lots of corporate people who are going to be spammed to death but it just proves it wasn't phishing.

the second 'dump' is purely a list of email addresses with names who appear to be media relations? people for various organisations, or something like that.

It's not OUR email addresses.

Chill.

Can people not post the thing's webpage, please? The first time, I assumed it was the Twitter one. I'd really rather not click on a website hosted by a doxing troll, and if you link, that's precisely what you are getting people to do.

Apart from anything else, why give the satisfaction of traffic?

I won't be clickin on no links no siree

Obviously that's why they have released that list now, to prove it wasn't phishing.

Just looked at the DadSec page and that list was downloaded over 21 hrs ago. So why is this being brought up as news now?

Thank you for posting the thread and Twitter.

Uh-oh

My only reason for posting this as I think it proves this is a server leak and not a phishing scam, as obviously these organisations details must have come from within the MN database. I just wanted to make people aware the MN server is not safe in my humble opinion.

Ah bollox. All websites make money off data in some way. Facebook own my bloody photos ffs.
Dadsec has a russian based email address on the .gq site. Someone just needs to hack that or phish it or whatever the IT name for bothering it to find out who it is, is!

Is that the list of usernames from before? Or is it a new one?

Some MNers have found a site where hackers were planning and trying to hack RebeccaMNHQ's account - by sending her links in PMs, back in mid July. I don't understand all this hacker crap, but it's possible they managed it I suppose.

Looks like he's accessed an address book. Probably by hacking the email account of one of mnhq.

I'm not any more worried. I've given mn permission to use my data to give me special offers and take part in product tests. I'm happy with that :)

Those are mostly PRs emails. I recognise many of the email addresses. It's hardly Wikileaks