Skip to content ↓ | Skip to navigation ↓

The Wall Street Journal may have been compromised after tweets from Twitter user @rev_priv8, who goes by the name w0rm, posted images of a list of user accounts claiming they are from the WSJ.

Earlier, WSJ reported that they had systems compromised after an intrusion, but stated no customer data was affected.

Screen Shot 2014-07-22 at 11.47.18 PM

The same account reports to have also compromised and is offering the user database for sale.

Screen Shot 2014-07-22 at 11.56.55 PM

Screen Shot 2014-07-22 at 11.57.01 PM

There has not been confirmation that the data shown in the tweet is actually from the WSJ intrusion; however, the same attacker recently reported successful intrusion of CNET, which has been verified. In that instance, the attacker claimed to have leveraged a vulnerability in CNET’s implementation of the PHP Symfony framework.

The motivation of these attacks appears to gain attention with their spokesperson claiming it is nothing more at this point.