Category: data leak
Enterprise software provider TmaxSoft leaks 2TB of data
TmaxSoft, a Korean IT company developing and selling enterprise software has leaked over 50 million sensitive records.
The 2 TB-strong Kibana dashboard has been exposed for over two years. Cybernews researchers discovered it back in January 2023, noting the set …
Enterprise software provider TmaxSoft leaks 2TB of data
TmaxSoft, a Korean IT company developing and selling enterprise software has leaked over 50 million sensitive records.
The 2 TB-strong Kibana dashboard has been exposed for over two years. Cybernews researchers discovered it back in January 2023, noting the set …
Vietnam Post exposes 1.2TB of data, including email addresses
Vietnam Post Corporation, a Vietnamese government-owned postal service, exposed security logs and employee email addresses to external cyber threats
Vietnam Post Corporation, a Vietnamese government-owned postal service, left its security logs and employee email addresses accessible to outside cyber snoopers, …
Gamblers’ data compromised after casino giant Strendus fails to set password
Mexican online casino Strendus has exposed sensitive user data, including home addresses and the amounts of money they spent on gambling.
Strendus, one of the biggest online casinos in Mexico has exposed sensitive user data, including home addresses and the …
New England Biolabs leak sensitive data
On September 18th, the Cybernews research team discovered two publicly hosted environment files (.env) attributed to New England Biolabs.
Leaving environment files open to the public is one of the simplest mistakes that web admins can make, but it can …
Californian IT company DNA Micro leaks private mobile phone data
Hundreds of thousands of clients who opted-in for a screen warranty were exposed when DNA Micro leaked data from its systems.
The Cybernews research team found that DNA Micro, a California-based IT company, exposed the sensitive data of more than …
Global CRM Provider Exposed Millions of Clients’ Files Online
Researcher discovered that global B2B CRM provider Really Simple Systems exposed online a non-password-protected database with million records.
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained over 3 million records. The documents …
San Francisco’s transport agency Metropolitan Transportation Commission (MTC) exposes drivers’ plate numbers and addresses
A misconfiguration in the Metropolitan Transportation Commission (MTC) systems caused a leak of over 26K files, exposing clients’ home addresses and the plate numbers of their vehicles.
The Metropolitan Transportation Commission (MTC) is a governmental agency responsible for regional transportation …
National Logistics Portal (NLP) data leak: seaports in India were left vulnerable to takeover by hackers
The National Logistics Portal (NLP), a newly launched platform to manage all port operations in India, left public access to sensitive data, posing the risk of a potential takeover by threat actors.
On September 24th, researchers discovered that the NLP …
Misconfigured WBSC server leaks thousands of passports
The World Baseball Softball Confederation (WBSC) left open a data repository exposing nearly 50,000 files, some of which were highly sensitive, the Cybernews research team has discovered.
On June 5th, our researchers discovered a misconfigured Amazon Web Services (AWS) bucket …
Misconfigured WBSC server leaks thousands of passports
The World Baseball Softball Confederation (WBSC) left open a data repository exposing nearly 50,000 files, some of which were highly sensitive, the Cybernews research team has discovered.
On June 5th, our researchers discovered a misconfigured Amazon Web Services (AWS) bucket …
DarkBeam leaks billions of email and password combinations
DarkBeam left an Elasticsearch and Kibana interface unprotected, exposing records from previously reported and non-reported data breaches.
The leaked logins present cybercriminals with almost limitless attack capabilities.
DarkBeam, a digital risk protection firm, left an Elasticsearch and Kibana interface unprotected, …
DarkBeam leaks billions of email and password combinations
DarkBeam left an Elasticsearch and Kibana interface unprotected, exposing records from previously reported and non-reported data breaches.
The leaked logins present cybercriminals with almost limitless attack capabilities.
DarkBeam, a digital risk protection firm, left an Elasticsearch and Kibana interface unprotected, …
Canadian Flair Airlines left user data leaking for months
Researchers discovered that Canadian Flair Airlines left credentials to sensitive databases and email addresses open for at least seven months
Canadian Flair Airlines left credentials to sensitive databases and email addresses open for at least seven months, the Cybernews research …
Space and defense tech maker Exail Technologies exposes database access
Exail Technologies, a high-tech manufacturer whose clients include the US Coast Guard, exposed sensitive company data that could’ve enabled attackers to access its databases.
Exail, a French high-tech industrial group, left exposed a publicly accessible environment (.env) file with database …
Microsoft AI research division accidentally exposed 38TB of sensitive data
Microsoft AI researchers accidentally exposed 38TB of sensitive data via a public GitHub repository since July 2020.
Cybersecurity firm Wiz discovered that the Microsoft AI research division accidentally leaked 38TB of sensitive while publishing a bucket of open-source training data …
FBI hacker USDoD leaks highly sensitive TransUnion data
Researchers from vx-underground reported that FBI hacker ‘USDoD‘ leaked sensitive data from consumer credit reporting agency TransUnion.
TransUnion is an American consumer credit reporting agency. TransUnion collects and aggregates information on over one billion individual consumers in over thirty countries, …
Threat actor leaks sensitive data belonging to Airbus
The multinational aerospace corporation Airbus has launched an investigation into the recent leak of information allegedly stolen from the company.
The multinational aerospace corporation Airbus announced that it is investigating a data leak after cybersecurity firm Hudson Rock reported that …
Defense contractor Belcan leaks admin password with a list of flaws
US Government and defense contractor Belcan left its super admin credentials open to the public, Cybernews research team reveals.
Belcan is a government, defense, and aerospace contractor offering global design, software, manufacturing, supply chain, information technology, and digital engineering solutions. …