elasticsearch
BigFooty.com Leaks 70 Million Records from Sports Fan Members
The team at Security Detectives has discovered another leaky database. BigFooty, a popular Australian sports fan website, was found to be leaking around 132 GB (70 million records) of private information belonging ...
Covve Contacts App Data Breach Exposes 23 Million Emails Addresses and Other Private Details
An open Elasticsearch database belonging to a company named Covve leaked online, impacting around 23 million email addresses and other personal details. Troy Hunt, the researcher behind the Have I Been Pwned ...
CAM4 Data Leak Exposes Personal Data of Millions of Users
The digital world is once again tainted by a highly sensitive data leak that puts millions of users at risk of blackmail attempts, identity theft and fraud. A team of security researchers ...
Elasticsearch Database with 42 Million Records of Iranian Citizen Found Exposed Online
An Elasticsearch database holding 42 million records of Iranian Telegram users was found on the web, for anyone to access. The private data included phone numbers and user names, and it’s unclear ...
More Than 140GB of Data Exposed by Israeli Marketing Company
An Israeli marketing company exposed more than 140GB of data by mishandling the credentials for an Elasticsearch database. A San Diego-based DevOps engineer who uses the Twitter handle 0m3n detected the disclosure ...
Voting by Smartphone, Jeff Bezos Hacked, Microsoft Security Breach
In episode 96 of our monthly we discuss the controversy of voting by smartphone in our elections, the Jeff Bezos hacking incident, and the recent Microsoft support security breach. ** Show notes ...
Microsoft Leaks 250M Customer Details in Azure Fat-Finger Faux Pas
A Microsoft customer support database was discovered by researchers, open to the public internet. No encryption, no passwords, no nothin’ ...
Five Microsoft Elasticsearch Servers with Private Data for 250 Million People Found Unsecured Online
Security researchers found a total of 250 million Microsoft customer records spread on five unsecured servers that could have been accessed by anyone using just a web browser. Microsoft has since secured ...
Removing Search Guard from the Central Repository
We at Sonatype take our responsibility as stewards of the Central Repository (Central) very seriously, and for well over a decade we have been dedicated to the ideal of immutability when it ...
Exposed internal database reveals vulnerable unpatched systems at Honda
Automotive giant Honda has shut down an exposed database that contained sensitive information about the security — specifically the weak points — of its internal network. Security researcher Justin Paine discovered the ...
