Condé Nast User database reportedly breached, Ars unaffected

A recent incident has raised significant alarms in the cybersecurity community, as a hacker known as Lovely has claimed responsibility for breaching a user database belonging to Condé Nast. The breach reportedly involves over 2.3 million records from WIRED, one of its sister publications. The exposed data includes sensitive demographic details such as names, emails, addresses, and phone numbers, but notably, no passwords were compromised. The hacker has ominously announced plans to release an additional 40 million records linked to various Condé Nast properties, which encompass well-known publications like Vogue, The New Yorker, and Vanity Fair. Importantly, Ars Technica, another sister publication, confirmed that it was not impacted by this breach, as it operates on a distinct technology framework. In a troubling statement, the hacker criticized Condé Nast for their lack of urgency in addressing security vulnerabilities, claiming they had attempted to alert the company about these issues without success. “Condé Nast does not care about the security of their users’ data,” Lovely stated, adding that they had spent a month trying to persuade the company to implement necessary fixes. DataBreaches.Net has raised concerns about Lovely's true intentions, suggesting that while the hacker portrayed themselves as a white-hat figure eager to enhance security, they may actually be a cybercriminal seeking financial gain. The site emphasized that Condé Nast should avoid any form of payment to the hacker, as their reliability is questionable. As of now, Condé Nast has not publicly addressed the breach, and there has been no internal communication about it, which is not surprising given that Ars Technica was unaffected. For those interested in the specifics of the exposed data, Hudon Rock’s InfoStealers has provided a comprehensive overview of the situation.