Recently I discovered a non-password protected database that contained over 16,000 records. These records contained personally identifiable information (PII) of […]
A LatAm telecom company inadvertently exposed payment info of its subscribers
On Nov 29th 2018 I have identified an unprotected Elasticsearch cluster, available for public access, via Shodan engine. It took […]
Indonesian Phone and Content Provider Tri.co.id Leaks Millions of Records Online
On December 1st 2018 Bob Diachenko found a misconfigured database that has publicly exposed millions of user contacts, SMS, and […]