Cock.li, a privacy-focused email provider, experienced a data breach exposing over a million user records through a vulnerability in its now-retired Roundcube platform. The breach highlights the importance of secure webmail configurations, especially for platforms favored by security and cybercriminal communities. #Roundcube #CVE-2021-44026
Keypoints
- Cock.li suffered a data breach affecting over 1 million user accounts.
- The breach was caused by an SQL injection vulnerability in the old Roundcube webmail software.
- User data such as email addresses, login timestamps, and contact information were exposed.
- The service removed Roundcube and plans to implement better security measures.
- Users are advised to reset their passwords and remain vigilant for future security improvements.