The database of sf4m.org, home to The Science Fiction Forum, has allegedly been breached and leaked on a hacking forum. The breach purportedly exposes the data of approximately 16,200 users of the online community. The Science Fiction Forum is a student-run club at Stony Brook University in the United States, known for its extensive lending library of science fiction, fantasy, and horror, and for fostering a community for fans of speculative fiction.
The exposure of the forum’s database places its members at considerable risk. Malicious actors could exploit the leaked information for various nefarious purposes, including targeted phishing attacks, identity theft, and credential stuffing, where stolen login details are used to attempt to access other online services. Members of The Science Fiction Forum are strongly advised to change their passwords for the site and any other service where they may have used the same credentials.
The compromised data allegedly includes the following:
- User Emails
- Usernames
- Hashed Passwords
- User registration details
- Authentication tokens
