In another MongoDB-related misconfiguration incident, a UK-based company exposed personal and payment data of several hundreds of its customers. On […]
Mysterious Chinese Dating Apps Targeting US Customers Expose 42.5 Million Records Online
On May 25th I discovered a non password protected Elastic database that was clearly associated with dating apps based on […]
Company Offering Unique Experiences, Wine Tours, and Kids’ Parties Exposes 212,220 Records Online
On May 11th I discovered a non password protected Elastic database that contained detailed customer records and leads or potential […]
Golf App Exposes 218k Users’ Data Online
On April 1st Bob Diachenko discovered a non-password protected Elastic database that appeared to contain millions of records detailing golf […]
Panama Citizens Massive Data Breach
On May 10th I identified a massive bulk of data sitting in an unprotected and publicly available Elasticsearch cluster (hence […]
Massive SMS Bombing Operation Uncovered In Passwordless Database
SMS marketing has been an increasing problem with the rise of scripts and applications and that send literally countless messages […]
Database With Millions of Indian Personal Records Exposed and Hijacked
On May 1st, I have discovered an unprotected and publicly indexed MongoDB database which contained 275,265,298 records with personal identifiable information […]
Burger King’s Online Shop for Kids Exposed Data
Kool King Shop, (https://www.koolkingshop.fr/), a French-only online shop for kids who purchased Burger King’s menus, had customers data exposed in […]
AMC inadvertently exposed its subscribers database for Sundance Now and Shudder services
On May 1st I have discovered an unprotected and publicly available MongoDB instance which appeared to contain data related to […]