In a disturbing development, hackers who breached the Internet Archive earlier this month have been found to still have access to the organization's internal emailing tools, including a Zendesk token with permissions to access over 800,000 support tickets sent to info@archive.org since 2018.

The revelation came to light when users, including this journalist, received replies to old support tickets from the hackers themselves, rather than the Internet Archive's support team. The hackers used the opportunity to criticize the Internet Archive's response to the breach, stating that the organization had not done enough to rotate API keys exposed in their GitLab secrets.

The incident raises concerns about the security of the Internet Archive's vast inventory of data, which includes books, software, images, videos, audio, and even the digital archives of the island nation of Aruba. Although the organization has been working to restore its services, including the Wayback Machine, the breach has left users' data vulnerable.

The Internet Archive's founder, Brewster Kahle, has acknowledged that the organization is still working to bring its services back online, but the incident highlights the need for organizations to prioritize security and respond swiftly to breaches.