Millions of records containing sensitive, personally identifiable information, were sitting online in yet another unencrypted, non-password-protected database, experts have warned.
Found by security researcher Jeremiah Fowler, who discovered and reported his findings to vpnMentor, the database contained 3,637,107 records, and was 12.2TB in total size. It belongs to a company called Passion.io, a Delaware-based no-code app-building platform that allows creators, influencers, entrepreneurs, and coaches, to create websites without having any prior coding knowledge. They can also create, and sell, interactive courses.
Read more…
Source: TechRadar News
Sign up for our Newsletter
The latest news and insights delivered right to your inbox.
Related:
- Uber says data breach compromised 380K users in Singapore
December 16, 2017
Uber says an estimated 380,000 users in Singapore were impacted by the 2016 data breach that compromised 58 million accounts globally, but finds no incidents of fraud related to the attack. The ride-sharing operator posted a statement on its website Friday with the update, noting that the figure was “an approximation rather than an accurate and ...
- Imgur—Popular Image Sharing Site Was Hacked In 2014; Passwords Compromised
November 24, 2017
Only after a few days of Uber admitting last year’s data breach of 57 million customers, the popular image sharing site disclosed that it had suffered a major data breach in 2014 that compromised email addresses and passwords of 1.7 million user accounts. In a blog post published on Friday, Imgur claimed that the company had been notified of ...
- Uber concealed huge data breach
November 21, 2017
Uber concealed a hack that affected 57 million customers and drivers, the company has confirmed. The 2016 breach was hidden by the ride-sharing firm which paid hackers $100,000 (£75,000) to delete the data. The company’s former chief executive Travis Kalanick knew about the breach over a year ago, according to Bloomberg, which first broke the news. The hackers ...
- Your biggest threat is inside your organisation and probably didn’t mean it
November 19, 2017
It doesn’t have a super-sexy moniker like KRACK or Heartbleed, but the spectre of the insider threat looms large for organisations, and has done so for as long as electricity, silicon, and computing have been paired up to store information. While it’s easy to imagine a disgruntled, unhappy employee becoming a malicious actor within an organisation, and dumping the ...
- Equifax spends $87.5 million on data breach, more expenses on deck
November 9, 2017
Equifax spent $87.5 million in the third quarter on its recent data breach. The disclosure came amid an earnings report that showed revenue growth of 4 percent to $834.8 million and net income of $96.3 million. In other words, the data breach affecting 145 million Equifax customers dented the cash cow, but it certainly didn’t kill it. Read more… Source: ZDNet
- Millions of Malaysian phone users’ data stolen: Report
November 1, 2017
The personal details of some 46.2 million mobile phone subscribers in Malaysia have been stolen, in what is believed to be the largest data breach in the country, local media reported yesterday. Online technology site lowyat.net said the hackers have the home addresses, identity card numbers, SIM card information and private details of almost the entire ...