An online email verification service has taken itself offline after approximately 809 million of its customers’ emails were exposed through an unprotected server.
Researchers discovered a non-password protected MongoDB instance amounting to 150GB of data split across four separate collections last week. They analysed this exposed data, 808,593,939 records in total, and published their findings on Thursday.
The exposed records are owned by an email verifications service named Verifications.io, according to the researchers.
The largest drive, named ‘mailEmailDatabase’, itself contained three folders; Emailrecords (798,171,891 records exposed), emailWithPhone (4,150,600 records exposed) and businessLeads (6,217,358 records exposed).