In late 2025, the media world was hit by a significant data exfiltration. Currently, the WIRED subscriber database has been leaked for free, exposing millions of records. However, the threat actor indicates that this is merely the beginning.
Hudson Rock researchers have authenticated the 2.3 million record WIRED leak using infostealer infection data. More alarmingly, the hacker claims that a much larger database consisting of 40,000,000 lines related to Condé Nast will be released soon. This impending leak is expected to impact major publications including Vogue, The New Yorker, and Vanity Fair.
Our validation of the current data confirms it is legitimate and fresh, with entries as recent as September 8, 2025.
I remember in the mid 90s I was looking at Linux World’s website and they had just implemented account registrations that same day. I was fuzzing the website and they had left directory browsing enabled and the users, passwords, and email was sitting in a plain text flat file that was world readable.
I emailed them, didn’t get a response but within the hour the registration/login was disabled along with no more directory browsing.
Up until a mere few years ago the entire Makita tools warranty registration database was coming up in Google searches. All you had to do was take whatever person’s info you got in your search result and incriment the number in the url to go through the whole database person by person. I emailed their support many times and they did nothing - eventually found a legal email and then the same thing happened like you had - fixed in a day, never even got a thank you (or a truck of free tools delivered 😂). I was surprised to see such a poorly designed system in the year it was.