Dialog Claims It Was Hacked. A Misconfigured Website Left Its Members Exposed
Key takeaways
- Levine said the organization had temporarily closed many of its systems in response.
- Multiple reviews of the site's publicly accessible architecture, though, point to a misconfiguration, not a break-in.
- WIRED first reported on the Dialog records last week.
Why this matters: a development in AI with implications for how people work, create, and decide.
Photograph: Rapid Eye/Getty Images Comment Loader Save Story Save this story Comment Loader Save Story Save this story Dialog, the invite-only group cofounded by Peter Thiel, notified members and past event participants last week that a database containing their personal information had been breached, supposedly by a criminal hacker. But a WIRED analysis found that the files were readable to anyone who visited a landing page for the group’s app—what cybersecurity experts describe as a misconfiguration that effectively made the data publicly accessible.
The notification to people affected by the data exposure, emailed by Dialog managing director Juliette Levine and provided to WIRED, said that forensic investigators found that the names of 113 past participants in Dialog events had been exposed and, separately, “some” people registered for this summer's Dialog retreat had their information accessed. Levine said the organization had temporarily closed many of its systems in response.
The exposure, Levine alleged, “was a hack executed by a well-known criminal who is wanted in the United States,” adding that the group had acted “out of caution” to protect “the safety, privacy, and reputation of every Dialoger past and present.”