DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

And then I stumbled across these hacks by Zyklon

Posted on February 3, 2015 by Dissent

Seen on Pastebin, dated January 15:

Hacked By Zyklon #Wonkasec

WonkaSec Temp Homepage: http://trippletoaster.freeiz.com/Index%285%29.html
 Twitter: http://twitter.com/zyclonb4u
Website Hacked: http://soviethistory.macalester.edu
                Very small portion of the accounts, the other 90,000+ will be posted here: http://trippletoaster.freeiz.com/DbDump.php
The accounts with .edu emails are most likely professors, if you are in college and want to possible find youre professors lingin (sic) information check the full Dump and hit “ctrl. f” to type in the wanted name and it will come up if its in the database.
Enjoy 😉
What follows the message are 3,634 entries with first and last name, username, plaintext password, email address, and administrator status. The link to the full dump produces an error message here, which may save some people’s personal information from being leaked to even more people, but the Pastebin entry with over 3,600 individuals’ information is still online.
The Macalester.edu subdomain that Zyklon hacked was a resource for studying Russian culture and history and was open to anyone who was interested in the topic. The subdomain currently shows this message:
Disaster hit Seventeen Moments in Soviet History on January 15 in the form of a nasty hacking job. The hackers gained access to registered user information, including passwords. Our hosts have shut down the site to protect themselves and the other sites they host from similar invasions. At present we do not know when the site will be up and running, but we are working on a new version of the site that will be secure from such attacks. We appreciate your patience while we work on repairing the site.
If you ever signed up for that site and if you re-use passwords across sites, change your password(s) on other sites now. Even if your name doesn’t show up in a search of the Pastebin paste, it was likely available on the Internet at some point on or around January 15.
But the Macalaster hack wasn’t the only hack Zyklon announced that week. Zyklon also announced a hack of BigBlueInteractive‘s forum, and posting this screencap of the forum’s message about the incident:
BBI
A paste that Zyklon made on Pastebin about the hack has since been removed, so it is not clear whether and how much data were dumped from that hack.
Zyklon also announced a hack of aquamarineboat.com, a site that sells inflatable boats, and dumped what appear to be 2,060 user/customer first and last names, postal and email addresses, and plaintext passwords. DataBreaches.net sent the site a notification today to suggest they get the paste removed and contact their customers to alert them to change their passwords if they re-use passwords.  I probably should have also suggested they secure their site better, but I hope that would be obvious.
And then there was pumpsforless.com, who had approximately 460 users’ email addresses and plaintext passwords dumped in a paste by @Wonkasec on January 5th, although it’s not clear whether Zyklon was directly involved in that one. That website, too, has been notified today by DataBreaches.net.

Related:

  • Government will 'robustly defend' compensation claims from Afghans put at risk by data breach
  • Authorities released free decryptor for Phobos and 8base ransomware
  • Singapore Facing ‘Serious’ Cyberattack by Espionage Group With Alleged China Ties
  • Missouri Adopts New Data Breach Notice Law
  • Qantas obtains injunction to prevent hacked data’s release
  • Ransomware attack disrupts Korea's largest guarantee insurer
Category: Business SectorEducation SectorHackU.S.

Post navigation

← Ex-RadioShack worker accused of stealing nude phone photos
The FTC’s requested budget: implications for data security enforcement cases? →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Government will ‘robustly defend’ compensation claims from Afghans put at risk by data breach
  • Authorities released free decryptor for Phobos and 8base ransomware
  • Singapore Facing ‘Serious’ Cyberattack by Espionage Group With Alleged China Ties
  • Missouri Adopts New Data Breach Notice Law
  • Qantas obtains injunction to prevent hacked data’s release
  • Ransomware attack disrupts Korea’s largest guarantee insurer
  • Theft from Glasgow’s Queen Elizabeth University Hospital sparks probe
  • Global operation targets NoName057(16) pro-Russian cybercrime network in Operation Eastwood
  • More than 100 British government personnel exposed by Ministry of Defence data leak
  • New TeleMessage SGNL Flaw Is Actively Being Exploited by Attackers

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • 𝐔𝐠𝐚𝐧𝐝𝐚 𝐨𝐫𝐝𝐞𝐫𝐬 𝐆𝐨𝐨𝐠𝐥𝐞 𝐭𝐨 𝐫𝐞𝐠𝐢𝐬𝐭𝐞𝐫 𝐚𝐬 𝐚 𝐝𝐚𝐭𝐚‑𝐜𝐨𝐧𝐭𝐫𝐨𝐥𝐥𝐞𝐫 𝐰𝐢𝐭𝐡𝐢𝐧 𝟑𝟎 𝐝𝐚𝐲𝐬 𝐚𝐟𝐭𝐞𝐫 𝐥𝐚𝐧𝐝𝐦𝐚𝐫𝐤 𝐩𝐫𝐢𝐯𝐚𝐜𝐲 𝐫𝐮𝐥𝐢𝐧𝐠.
  • Meta investors, Zuckerberg reach settlement to end $8 billion trial over Facebook privacy violations
  • ICE is gaining access to trove of Medicaid records, adding new peril for immigrants
  • Microsoft can’t protect French data from US government access
  • Texas Enacts Electronic Health Record Data Localization Law
  • Upstate NY county clerk again refuses to enforce Texas abortion judgment
  • Attorney General James Leads Coalition Urging Congress to Protect Americans from Masked ICE Agents

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.
Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report