Sergiu Gatlan reports: A publicly accessible ElasticSearch cluster owned by Orvibo, a Chinese smart home solutions provider, leaked more than two billion user logs containing sensitive data of customers from countries all over the world. Orvibo provides its clients with smart solutions designed to help them manage houses, offices, and hotel rooms via smart systems…
Category: Business Sector
Former Equifax employee sentenced for insider trading
ATLANTA, JUNE 27 – Jun Ying, the former Chief Information Officer of Equifax U.S. Information Solutions, has been sentenced to federal prison for insider trading. “Ying thought of his own financial gain before the millions of people exposed in this data breach even knew they were victims,” said U.S. Attorney Byung J. “BJay” Pak. “He…
Jack’d To Pay $240K For Private Photos Leak
Devin Randall reports: Jack’d is paying out money make up for its picture leak. Earlier this year, we shared with you how a single tech expert Oliver Hough discovered that there was a large hole in Jack’d’s code. It turns out, the company did not properly secure photos and data uploaded using Amazon Web Services…
UK: Former company director believed to have profited by more than £1.4 million after selling personal data illegally
From the Information Commissioner’s Office: A former company director found guilty of illegally obtaining people’s personal data and selling it to solicitors chasing personal injury claims, has been fined for breaches of data protection and issued with a confiscation order under the Proceeds of Crime Act 2002. David Cullen of Middleton Road, Manchester, was the…
AWS S3 server leaks data from Fortune 100 companies: Ford, Netflix, TD Bank
Catalin Cimpanu reports: Attunity, an Israeli IT firm that provides data management, warehousing, and replication services for the world’s biggest companies, has exposed some of its customers’ data after it left three Amazon S3 buckets exposed on the internet without a password. The leaky AWS S3 buckets contained information on Attunity’s own operations, but also…
5 million personal records belonging to MedicareSupplement.com exposed to public
Paul Bischoff writes: An online database of more than 5 million records apparently belonging to MedicareSupplement.com was left open and accessible to the public. On May 13, 2019, Comparitech worked alongside security researcher Bob Diachenko to uncover the publicly available MongoDB instance that appears to be part of the website’s marketing leads database. MedicareSupplement.com is…