Millions of records containing sensitive, personally identifiable information, were sitting online in yet another unencrypted, non-password-protected database, experts have warned.
Found by security researcher Jeremiah Fowler, who discovered and reported his findings to vpnMentor, the database contained 3,637,107 records, and was 12.2TB in total size. It belongs to a company called Passion.io, a Delaware-based no-code app-building platform that allows creators, influencers, entrepreneurs, and coaches, to create websites without having any prior coding knowledge. They can also create, and sell, interactive courses.
Read more…
Source: TechRadar News
Sign up for our Newsletter
The latest news and insights delivered right to your inbox.
Related:
- The US Office of Personnel Management Systems Are Still Insecure
November 14, 2018
The security posture of the Office of Personnel Management has improved drastically and by the end of the year, the agency is on track to meeting almost all recommendations the US Government Accountability Office (GAO) made over the past two years. Full compliance is expected by the end of 2019. GAO carried out between February 2015 ...
- Radisson Hotel Group suffers data breach, customer info leaked
November 1, 2018
The chain accounts for over 1,400 hotels in over 70 countries and includes the Park Plaza brand, Country Inn & Suites, Park Inn, and Radisson Collection. Radisson Rewards members were directly informed on October 30 and 31 that a security incident was discovered on the first of the month which may have involved the leak of ...
- Australian defence contractor Austal hit by data breach
November 1, 2018
Australian prime defence contractor and shipbuilder Austal informed the Australian Securities Exchange (ASX) of a data breach after the market closed on Thursday evening. The company said it alerted “stakeholders” who were potentially hit by the breach, but said no information affecting national security or the company’s operations was stolen, although a number of staff emails and ...
- Millions of Voter Records Up for Sale Ahead of the US Midterm Elections
October 30, 2018
As the US midterm elections close in, the underground markets appear to be flush with voter databases available for affordable prices. Voter information is rich with details that could help an attacker learn enough about the victim to steal their identity. Cybersecurity company Carbon Black, at least one market on the dark web lists for sale voter ...
- Why website maintenance is essential for small businesses’ cyber-security
October 29, 2018
Investing time in ongoing website maintenance is a key way to ensure that your small business website is as protected as it can be against cyber-security threats. October 2018 is Cyber Security Awareness Month, an annual campaign which aims to raise awareness of cyber-security threats. Research from the Cyber Security Breaches Survey 2018 shows that four ...
- Cathay Pacific Data Breach Highlights A Need To Change Airline Security Focus
October 25, 2018
Cathay Pacific has been hit by a data breach affecting 9.4 million passengers of Cathay and Hong Kong Dragon Airlines, a serious exposure that shows—not for the first time—that the focus of airline security can’t be limited to airport terminals and aircraft cabins. First discovered in March, and confirmed in May of this year, the Cathay Pacific ...