Huge E-marketing Database that Contains 11 Million Sensitive Personal Records Exposed Online

Haythem Elmir
0 1
Read Time1 Minute, 10 Second

Huge E-marketing Database that Contains 11 Million Sensitive Personal Records Exposed Online

A huge customer database with 11 million records that containing personal details such as email, full name, gender and physical address exposed online. The data to be available from the unprotected MongoDB instance and it is open for anyone to access it.

Security researcher Bob Diachenko discovered the database containing 43.5GB large dataset with 10.999.535 email addresses along with the DNS status of the email addresses. The leaked data can be used by utilized by cybercriminals for malware and phishing campaigns.

Diachenko said that the origin of the data remains unknown and can find only a hint with a part of the email says “Yahoo_090618_ SaverSpy“.

 

It appears the attackers having access to the MongoDB already, Diachenko said the database was tagged as Compromised and the database containing a “Readme file” with a ransom note demanding 0.4 BTC for recovering the data, but it appears the scripts failed to encrypt the files.

Diachenko tried contacting SaverSpy which is powered Coupons.com to report the breach, but there is no response from them, However, the database has been taken offline.

Last week another Data Management Company’s misconfigured MongoDB server exposedits marketing database that contains around 445 million its customer records.

To read the original article:

https://gbhackers.com/11-million-sensitive-personal-records-exposed-online/

Happy
Happy
0 %
Sad
Sad
0 %
Excited
Excited
0 %
Sleepy
Sleepy
0 %
Angry
Angry
0 %
Surprise
Surprise
100 %

Average Rating

5 Star
0%
4 Star
0%
3 Star
0%
2 Star
0%
1 Star
0%

Laisser un commentaire

Next Post

Selon le rapport, la violation des données Newegg expose les informations de carte de crédit client

Certains clients de Newegg auraient eu leur numéro de carte de crédit, alors que le groupe de piratage Magecart frappe à nouveau. Les chercheurs en sécurité RiskIQ ont déclaré mercredi que Magecart avait inséré un code malveillant dans le système de paiement du détaillant de matériel et d’électronique et qu’il […]