Security Company Seemed To Have Inadvertently Exposed Its ‘Leaks Database’ with 5B Records



Five billion records exposed in open 'data breach database' | SC Media

An unprotected and thus publicly available Elasticsearch instance has been found which appeared to be managed by a UK-based security company, according to the SSL certificate and reverse DNS records.  The irony of that discovery is that it was a ‘data breach database’, an enormously huge collection of previously reported (and, perhaps, non-reported) security incidents spanning 2012-2019 era.

NOTE: Company’s data and customer records were not exposed, incident involved only previously reported data breaches collections.

Caroline Oest

Micro Focus Customer Experience Marketing

If you find this post useful, give it a ‘Like’ or use ‘Verify Answer’


Industry News
Comment List
Related Discussions