E3 2019 hasn't quite ended yet. A compiled list of media, analysts, content creators, and others who attended E3 2019 was leaked yesterday after being found to be publicly accessible on the event's website.
The document in question is a spreadsheet containing the personal information of many journalists and others, including their email addresses, phone numbers, and physical addresses. The Entertainment Software Association, the organization that runs the annual E3 expo, has since removed both the file and links to it. However, the information's availability was already publicized and has found its way across various gaming forums across the web.
While some outlets used work addresses and numbers, others including freelance content creators and streamers would have used their personal addresses. When contacted for comment, the ESA sent USgamer a statement:
"ESA was made aware of a website vulnerability that led to the contact list of registered journalists attending E3 being made public. Once notified, we immediately took steps to protect that data and shut down the site, which is no longer available. We regret this occurrence and have put measures in place to ensure it will not occur again."
Though the information had been available for some time, it quickly escalated in visibility after a YouTube content creator published a video on the matter. The initial vulnerability that made the list accessible was removed, but the file was still available through a Google cache or direct link. That vulnerability has since been removed after a follow-up, as sources have told Kotaku.
The information has spread to various forums, and there have already been reports of crank calls and unsolicited messages to journalists affected by the breach. We will continue to update with more info as it comes in.