Security Affairs

JANUARY 12, 2024

Liquipedia, an online e-sports platform run by Team Liquid, exposed a database revealing its users’ email addresses and other details. Users of the e-sports knowledge base were exposed via a publicly accessible and passwordless MongoDB database, the Cybernews research team has discovered.

Authentication 124

Authentication Access Encryption Risk 124

Security Affairs

DECEMBER 15, 2023

The leak comes after the team discovered an unprotected MongoDB instance, which stored information on GokuMarket crypto exchange users. Businesses employ MongoDB to organize and store large swaths of document-oriented information, and in GokuMarket’s case, the details of over a million customers and admin users.

Passwords 102

Passwords Phishing Encryption Access 102

Security Affairs

MAY 7, 2021

CyberNews researchers found more than 29,000 unprotected databases worldwide that are still publicly accessible, leaving close to 19,000 terabytes of data exposed to anyone, including threat actors. Most organizations use databases to store sensitive information. But just how many unsecured databases are still out there?

Passwords 139

Passwords Authentication Access File names 139

Security Affairs

OCTOBER 9, 2022

Threat actors got to a database with over 152,000 customer records before its owner, the Turkish branch of Harvard Business Review, closed it. A recent discovery by the Cybernews research team is a stellar example of how open databases pose a great risk to businesses and consumers alike. Original Post published on CyberNews.

Ransomware 103

Ransomware Passwords GDPR Encryption 103

Security Affairs

MARCH 10, 2019

The Android caller ID app Dalil exposed online data belonging over 5 million users, security experts discovered a MongoDB database left accessible on the web without a password. According to ZDNet the database included 208,000 new unique phone numbers and 44 million app events that were added in the last month. .

Passwords 94

Passwords Encryption Archiving Access 94

Security Affairs

NOVEMBER 8, 2018

Records associated with 689,272 plaintext records Amex India customers were exposed online via unsecured MongoDB server. Personal details of nearly 700,000 American Express (Amex India) India customers were exposed online via an unsecured MongoDB server. The archive included 2,332,115 records containing encrypted data (i.e.

Encryption 87

Encryption Data breaches IoT Archiving 87

Troy Hunt

DECEMBER 15, 2021

The machine had full disk encryption and it's not known whether the thief was ever actually able to access the data. Some years later, an outsourcing provider of the Australian Red Cross Blood Service copied a database from production and backed it up to a web server facing the world. No security protocols were breached.

Data breaches 128

Data breaches Passwords Access Personal data 128