Collaborate Disseminate
A database of 70,000 offender and incident logs was only supposed to be accessible internally within UK hardware store B&Q, but was instead exposed for anyone to access – no password required.
So you’d expect B&Q to fix this pretty quickly afte… Continue reading B&Q data leak exposes information on 70,000 thefts from its stores, including names of suspected offenders
Online gamblers lose their private data as yet another unsecured Elasticsearch database is discovered. Continue reading 100 million online bets exposed by leaky database
A researcher has discovered an exposed database containing gigabytes of call logs, SMS data, and internal system credentials belonging to US Voice-over-IP (VoIP) service provider VOIPo.com. Continue reading Change your password! VoIP provider leaves huge database exposed online
Brazil’s largest subscription television services company, SKY Brasil, leaked private data of 32 million customers on ElasticSearch, a search engine favored by enterprises, reported independent security researcher Fabio Castro on Twitter last wee… Continue reading Data of 32 million SKY Brasil customers easily accessible on unprotected ElasticSearch server
By Uzair Amir
Misconfigured ElasticSearch Servers Exposed Private Data of over 82 Million Users. A warning has been issued by Bob Diachenko, a HackenProof security researcher informing users in the US that around 73 gigabytes of data is identified in a… Continue reading Private data of more than 82 million US citizens left exposed
In this Newsmaker Interview, ‘breach hunter’ Chris Vickery explores a recent spate of breaches from Marriott, USPS and Dell EMC. Continue reading Chris Vickery on the Marriott Breach and a Rash of Recent High-Profile Hacks
Misconfigured Elasticsearch servers spilled personal details on 57 million Americans, said reports this week. Continue reading 57m Americans’ details leaked online by another misconfigured server
A data breach involving Elasticsearch search-engine technology exposed the personal information of nearly 57 million people for at least two weeks, according to report released Wednesday by the cybersecurity organization Hacken. The breach exposed 73 gigabytes of data as early as Nov. 14, Hacken said, including the names, employers, job titles, emails, addresses, phone numbers and IP addresses of 56,934,021 U.S. residents. There was a separate cache of data titled “Yellow Pages,” the report said, with 25 million records about businesses, including information such as names, company details, zip addresses, latitude/longitude, census tract, phone numbers, web addresses, emails, revenue numbers and more. Hacken said it was unclear where the leak originated, but the formatting of the data appeared to have similarities to fields used by Canadian data management company Data & Leads. The database is no longer exposing information to the public, Hacken said. Elasticsearch is an open-source tool intended to allow users to search data stored in private networks. The […]
The post Data about 57 million people exposed by Elasticsearch servers appeared first on Cyberscoop.
Continue reading Data about 57 million people exposed by Elasticsearch servers
Gym customer data, including contact information, birth dates and height/weight data, opens the door to convincing follow-on social-engineering attacks. Continue reading FitMetrix Exposes Millions of Customer Details, Accessed by Criminals
This is the Shared Security Weekly Blaze for July 2nd, 2018 sponsored by Security Perspectives – Your Source for Tailored Security Awareness Training and Assessment Solutions and Silent Pocket. This episode was hosted by Tom … Continue reading The Shared Security Weekly Blaze – Mobile App Data Leaks, The California Privacy Act, Third-party Gmail Access