Some Internet Archive data is back online, even though hackers have infiltrated the charity table

As the Internet Archive struggles to recover from last month’s devastating cyberattack — there’s good news and bad news.

Is it good? Some of the site’s services are now back online.

Is it bad? Hackers now have access to a website’s internal support system.

Also: Why you don’t have to pay for antivirus software

In the latest update on the availability of its services, the Internet Archive reported that its Archive-It service and blog page are back. Archive-It is a subscription-based service that enables organizations to create a large collection of videos, social media posts, and other digital content, and a blog page allows site owners to communicate with their audience. many. Other services have also been restored, following the restoration of the Wayback Machine in read-only mode last week.

“The Wayback Machine, Archive-It, scanning, and the national library have all started again, along with email, blog, help desk and social media,” Internet Archive founder Brewster Kahle said in a post. blog on Friday. “Our team is working around the clock across regions to bring some services back online [the] In the coming days, some services will resume, others will resume in read-only mode as full restoration will take more time.”

However, email sites and helpdesks remain a problem as hackers seem to have infiltrated those services.

Also: The NSA advises you to turn off your phone once a week – here’s why

As explained by Bleeping Computer, this latest breach saw the theft of GitLab authentication tokens, giving attackers access to Zendesk’s email support platform. Several people who previously sent support emails to the database received the following response from the attackers as shown on the Reddit forum:

It’s disappointing to see that even after being notified of the breach weeks ago, IA hasn’t done much due diligence to circulate the many API keys exposed in their GitLab secrets. As indicated by this message, this includes the Zendesk logo and access to the 800K+ support tickets sent to info@archive.org since 2018. Whether you were trying to ask a general question, or you request the removal of your Wayback Machine site data is now in the hands of some random guy. If it’s not me, it can be someone else.

Some people who took to Reddit blamed the Internet Archive for not changing its API keys after the first attacks, and others sympathized with the site. As a non-profit organization dedicated to sharing important historical information, the Internet Archive has a limited budget. That means that cybersecurity can be short-circuited in the entire process of things.

Also: Cash App users have less than a month to claim the $2,500 payment

“In the third attack on the Internet Archive this month, hackers are using access tokens in the Zendesk organization,” said Ev Kontsevoy, CEO of Teleport. “This means that they now have access to more than 800 support tickets. While many have criticized the Internet Archive for not changing API keys, it would be a challenge after a breach of law for organizations to choose the place of explosion of an attack to prevent further abuse.”

The series of events began last month when two attacks hit the Internet Archive. Another was a breach that compromised the accounts of 31 million users. Here, the attackers stole the website’s usernames, email addresses and encrypted passwords. Using a JavaScript library to deface the archive, the attackers displayed the following message to visitors: “Have you ever heard that the Internet Archive runs on sticks and is constantly vulnerable security bad? It just happened.”

Also: If you’re a Marriott customer, the FTC says the bankrupt hotel chain owes you.

Another event happened at the same time – a pro-Palestinian group called SN_BlackMeta launched a DDoS (Distributed Denial of Service) attack against the database. Here, the criminals said they were attacking the site “because the archive belongs to the USA, and as we all know, this horrible and hypocritical government supports the genocide that is being carried out by the terrorist state of ‘Israel’.”

The irony about the DDoS attack is that the database is a non-profit and non-governmental organization with no ties or affiliation to the US government.

Also: The best VPN services of 2024: Expertly tested and reviewed

As a result of the attacks, the database was forced offline and is slowly starting to come back one service at a time.

“Last week, along with a DDOS attack and the exposure of customer email addresses and encrypted passwords, the Internet Archive website’s javascript was compromised, causing us to take the site down this to access and improve our security,” Kahle said in his Friday post. “The Internet Archive’s stored data is safe and we are working to safely restore the service. This new reality requires serious attention to network security and we are responding. We apologize for of the impact of these library services are not available.”