{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreih7ouk2vovb6vyfh5ua4pzwjp2ukmdhyphsyjcn36kxvdxgokskdy",
    "uri": "at://did:plc:mscnlphyrdu42hmvh4wlipbv/app.bsky.feed.post/3mklteo47fqp2"
  },
  "path": "/2026/04/28/security-incident-disclosure-2024-04-28/",
  "publishedAt": "2026-04-28T22:42:18.000Z",
  "site": "https://blog.openlibrary.org",
  "tags": [
    "security"
  ],
  "textContent": "Early, around 7:30am Pacific, on Tuesday, April 28th, high database load was detected on OpenLibrary.org. Investigation revealed a set of at least 38,703 residential IP addresses performing a coordinated sqlinjection attack on a vulnerable openlibrary.org endpoint, resulting in exfiltration of emails and encrypted passwords of 175,080 legacy accounts, registered before March, 2011. This table has […]",
  "title": "Security Incident Disclosure"
}