ShellCodeX Breach Report
JoomlArt Data Breach
joomlart.com
Verified breach
Passwords exposed
Accounts exposed
22,477
Breach date
30 Jan 2018
Added to tracker
01 Nov 2018
Data classes
5
What happened
In January 2018, the Joomla template website JoomlArt inadvertently exposed more than 22k unique customer records in a Jira ticket. The exposed data was from iJoomla and JomSocial, both services that JoomlArt acquired the previous year. The data included usernames, email addresses, purchases and passwords stored as MD5 hashes. When contacted, JoomlArt advised they were aware of the incident and had previously notified impacted parties.
Exposed data
Email addresses
Names
Passwords
Payment histories
Usernames
Recommended actions
- Change your JoomlArt password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing JoomlArt โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP