Yesterday it was the Church of Cyprus and today its the Church of Scotland that hacker @security_511 has breached and leaked data from. Today’s breach is on Church of Scotland (https://www.churchofscotland.org.uk/) and leak was announced not to long ago from twitter and has been posted to pastebin. The paste contains 1,570 User & 9 administrator credentials with the admin based credentials actually belonging to a different domain then the one which was breached is an official church of Scotland site/domain (https://cofscotland.org.uk/). Leaked credentials for administrators are emails and clear text passwords and for user accounts its user names, email addresses and encrypted passwords. Sadly the administrators think its a good idea to use passwords like "qwer56123". It also appears that security_511 has been attacking other sites and become more active again after some time away.
The Office of Inadequate Security
