Bill Toulas reports: The French digital supply chain management and software solutions provider ‘Apodis Pharma’ has misconfigured an ElasticSearch database for public access, essentially leaking over 1.7 TB of confidential business-related data. The client portfolio of ‘Apodis Pharma’ includes big pharmaceutical firms, so the particular data leak is considered a grave security event. Read more…
Category: Exposure
AU: Australia’s largest cryptocurrency exchange accidentally exposed the names and emails of 270,000 customers
Cam Wilson reports that an old-fashioned email goof by BTC Markets exposed members’ names and email addresses: Early on Tuesday morning, an Australian cryptocurrency exchange that bills itself as the largest in the country inadvertently exposed more than 270,000 of its members names and email addresses. Users posted to social platforms like Twitter and Reddit to complain…
Cayman Islands investment fund left entire filestore viewable by world+dog in unsecured Azure blob
Gareth Corfield reports: A Cayman Islands-based investment fund has exposed its entire backups to the internet after failing to properly configure a secure Microsoft Azure blob. Details of the fund’s register of members and correspondence with its investors could be freely read by anyone with the URL to its Azure blob, the Microsoft equivalent of…
Thousands of US lab results and medical records spilled online after a security lapse
Zack Whittaker reports: NTreatment, a technology company that manages electronic health and patient records for doctors and psychiatrists, left thousands of sensitive health records exposed to the internet because one of its cloud servers wasn’t protected with a password. The cloud storage server was hosted on Microsoft Azure and contained 109,000 files, a large portion…
WhiteHat Jr faces security breach exposing personal data
InfoTechLead reports: WhiteHat Jr, BYJU’S-owned online coding platform, has fixed a cyber security issue after exposing personal data of over 2.8 lakh students and teachers due to multiple vulnerabilities. Last month, Mumbai-based WhiteHat Jr was found to have another security issue that was also leaking students’ personal data and transaction details. Read more on InfoTechLead.
Investigation launched after hundreds of confidential patient details from Lloyd Pharmacy were sent to a woman in the post
Jessica Sansome reports: A woman received a parcel from Lloyds Pharmacy containing hundreds of prescription records – exposing confidential patient information. She believes the box from Lloyds Pharmacy was meant to be delivered to NHS prescriptions services in Bolton, Greater Manchester. Read more on Manchester Evening News.