Italy’s historic leftist newspaper, Il Manifesto, has inadvertently exposed sensitive data belonging to thousands of its readers and millions of website visitors. Researchers discovered an unprotected ClickHouse database containing over 11 million records, including personal details of paying subscribers and behavioral logs of general readers.
Database Exposure Reveals Reader Identities and Activity Logs
The exposed database included approximately 150,000 subscriber email addresses and millions of tracking logs detailing how users interacted with the newspaper’s website. According to Cybernews, the information stored without any password protection included:
- Technical details of visitors’ devices
- Session tokens and IP addresses
- GeoIP data accurate to within 11 meters
- Referral sources showing how readers found the articles
While no passwords or direct login credentials were leaked, experts warn that the exposure could still pose significant privacy and reputational risks. Because Il Manifesto caters to a politically distinct readership, identifying which individuals read which articles effectively exposes their political preferences and beliefs — information classified under “special category” data by European privacy law, requiring stricter safeguards.
“Knowing which individuals read which articles effectively means knowing something about their political interests, perhaps even their beliefs,” noted the Cybernews researchers.
The leak also exposed Il Manifesto’s internal analytics, including traffic metrics, article performance data, and referral trends. Such business intelligence could be exploited by competitors or threat actors for targeted campaigns.
Political Legacy Meets Modern Cyber Risk
Founded in 1969, Il Manifesto is a longstanding voice of Italy’s radical left. Once affiliated with the Communist Party, the paper has endured political suppression and even survived a neo-fascist bombing attempt in 2000. Today, it operates as a non-profit cooperative with a daily circulation of around 15,000 copies.
Despite its resilience through decades of political turmoil, the publication’s latest challenge comes from the digital realm. Cybernews disclosed that both Italy’s national Computer Emergency Response Team (CERT) and Il Manifesto were contacted multiple times, yet as of their report’s release, the exposed database remained accessible.
Researchers emphasize that password protection and authentication should be the bare minimum for such data stores. They also recommend IP whitelisting to restrict database access solely to authorized personnel and systems.
A Common but Preventable Cybersecurity Loophole
The incident underscores a widespread issue in data security—unsecured databases exposed online due to human error or misconfiguration. Such oversights often allow threat actors to access sensitive information without sophisticated hacking techniques.
Cybernews analysts warn that search engines and automated scanners routinely index open databases, meaning even temporary exposure can lead to massive data leaks. These misconfigurations have affected industries far beyond media; for instance, a Thomson Reuters breach previously left over 3TB of sensitive data exposed, including plaintext passwords to third-party systems—information potentially worth millions on cybercriminal markets.
Disclosure Timeline and Ongoing Concerns
- Leak discovered: September 9, 2025
- Initial disclosure to Il Manifesto: September 15, 2025
- CERT contacted: September 24, 2025
Despite the passage of weeks, Il Manifesto has not responded to media inquiries or Cybernews’s warnings. The ongoing accessibility of the exposed database raises concerns about data misuse and regulatory compliance under the EU’s General Data Protection Regulation (GDPR).
With politically sensitive data now at risk, experts urge Il Manifesto and other media organizations to reassess their cybersecurity posture, ensuring that editorial independence is not compromised by digital negligence.
