The database of the FinHeaven fan forum, which unites fans of the NFL team Miami Dolphins, containing the personal data of more than 140,000 users, was accidentally exposed to the public on the Internet.
Team of the cybersecurity researchers have discovered that a backup copy of the FinHeaven forum database created in July 2024 has been made public due to a server error. User names, e-mail addresses, dates of birth and even private messages between users got into the database. Although the passwords were encrypted, some of them used the outdated MD5 method, which is easy to crack. Researchers warn that this information can be used for phishing attacks, fraud or blackmail.
FinHeaven is an online forum for Miami Dolphins fans that has no direct affiliation with the team, but is supported by user contributions. The Miami Dolphins is a famous American football team that plays in the East Division of the American Football Conference (NFL). Forum leaks often pose significant risks to users’ privacy, especially when private messages and personal data are leaked.
FinHeaven’s administration has been informed of the leak and the database is no longer available for public viewing. Cyber security experts advise users to change their passwords and be alert to possible phishing attacks