Email addresses of 15 million Trello users leaked on hacking forum #BleepingComputer revealed that a #threatactor named 'emo' was vending profiles for 15,115,516 Trello members on a prominent hacking forum earlier this year. Although most of the #data in these profiles is public, each profile contained a non-public email address associated with the account. Despite #Atlassian not confirming how the data was obtained, emo informed BleepingComputer that it was acquired through an unsecured REST API, allowing developers to access public information based on users' Trello ID, username, or #email address. #endpoint #cloudsecurity #smallbusiness #infosec #bankingindustry #cyber #endpointsecurity #iotsecurity #IoT #Canada #cyberawareness #technology #datasecurity #cloud #google #microsoft #windowssecurity #vulnerability #securityawareness #riskmanagement #dataprivacy #infrastructure #globalsecurity #threatintelligence #EU #socialmedia #news #defensivemeasures #knowledgebase #linkedin #networksecurity #vulnerability #internetofthings #ransomwareattack #smartphones #UnitedKingdom #mobilephones #AsiaPacific #EuropeanUnion #DataSecurity #Lawenforcement #fraudprevention #cyberattack #data #privacy #dataprivacy #emailsecurity
SUMMARY: Email addresses of 15 million Trello users were exposed on a hacking forum. MAIN POINTS: - A threat actor leaked the email addresses of 15 million Trello users. - The breach involved emails scraped from public boards, violating Trello’s guidelines. - Trello advises users to set boards to private to enhance security. TAKEAWAYS: - Users should verify and adjust their Trello board privacy settings. - Organizations must revisit data visibility policies for public collaboration tools. - Stay vigilant for phishing attempts using leaked email information. #Trello #datasafety #cybersecuritynews