misconfiguration – Page 13 – WindowsTechs.com

Misconfigured ElasticSearch Cluster Exposed Over 90 Million Records

Posted on July 9, 2019 by David Bisson

A security researcher found a misconfigured ElasticSearch cluster that exposed over 90 million personal and businesses data records. On 1 July, GDI Foundation member and an independent security researcher Sanyam Jain found that the unprotected ElasticS… Continue reading Misconfigured ElasticSearch Cluster Exposed Over 90 Million Records→

2.3B Files Exposed in a Year: A New Record for Misconfigs

Posted on May 30, 2019 by Tara Seals

Amazon S3 cloud bucket misconfigurations however have dropped dramatically. Continue reading 2.3B Files Exposed in a Year: A New Record for Misconfigs→

Data Security in the Cloud: How to Lock Down the Next-Gen Perimeter

Posted on May 21, 2019 by Tara Seals

Enjoy the video replay of the recent Threatpost cloud security webinar, featuring a panel of experts offering best practices and ideas for managing data in a cloudified world. Continue reading Data Security in the Cloud: How to Lock Down the Next-Gen Perimeter→

Ladders, SkyMed Leak Employment, Medical Data for Millions

Posted on May 2, 2019 by Tara Seals

One of the misconfigured Elasticsearch databases showed evidence of a ransomware attack. Continue reading Ladders, SkyMed Leak Employment, Medical Data for Millions→

Unsecured Gearbest server exposes millions of shoppers and their orders

Posted on March 15, 2019 by Zeljka Zorz

Chinese e-commerce giant Gearbest has exposed information and orders of millions of its customers through an unsecured Elasticsearch server, security researcher Noam Rotem and his team have found. What kind of data was exposed? According to Rotem, the … Continue reading Unsecured Gearbest server exposes millions of shoppers and their orders→

Hundreds of Vulnerable Docker Hosts Exploited by Cryptocurrency Miners

Posted on March 4, 2019 by Vitaly Simonovich

Docker is a technology that allows you to perform operating system level virtualization. An incredible number of companies and production hosts are running Docker to develop, deploy and run applications inside containers. You can interact with Docker v… Continue reading Hundreds of Vulnerable Docker Hosts Exploited by Cryptocurrency Miners→

VOIPO Database Exposes Millions of Texts, Call Logs

Posted on January 16, 2019 by Lindsey O'Donnell

VOIPO acknowledged that a development server had been accidentally left publicly accessible, and took the server offline. Continue reading VOIPO Database Exposes Millions of Texts, Call Logs→

New security feature to prevent Amazon S3 bucket misconfiguration and data leaks

Posted on November 19, 2018 by Zeljka Zorz

Hardly a week goes by that we don’t hear about an organization leaving sensitive data exposed on the Internet because they failed to properly configure their Amazon S3 buckets. Amazon Web Services, to their credit, are trying to prevent this from… Continue reading New security feature to prevent Amazon S3 bucket misconfiguration and data leaks→

Solving the cloud infrastructure misconfiguration problem

Posted on October 18, 2018 by Zeljka Zorz

Security incidents involving cloud infrastructure have become a regular occurrence since many organizations began shifting their assets to the cloud. Many of these incidents happen because of misconfiguration. “Cloud misconfiguration is a pervasi… Continue reading Solving the cloud infrastructure misconfiguration problem→

FitMetrix Exposes Millions of Customer Details, Accessed by Criminals

Posted on October 11, 2018 by Tara Seals

Gym customer data, including contact information, birth dates and height/weight data, opens the door to convincing follow-on social-engineering attacks. Continue reading FitMetrix Exposes Millions of Customer Details, Accessed by Criminals→