Thanks to @0m3n, a security researcher from San Diego, the database did not go into the hands of parties with malicious intent.
Israeli marketing company Straffic has leaked personal sensitive data of millions of unsuspecting users mostly from the US and European countries – The leak took place due to a misconfigured Elasticsearch database.
Unlike other data breaches involving search engine software Elasticsearch, where databases are accessible without a password due to misconfiguration, the database was protected in this case. However, the password to access the database was in a plaintext file exposed to the public on another domain.
Originally, the database was identified by a security researcher “@0m3n” who gained access to 140 GB worth of records. This included 49 million unique e-mail addresses, names, gender, telephone numbers and addresses of Americans and Europeans.
Screenshot of the leaked data (Source: Databreachtoday who confirmed that the data included records of Americans and Europeans.)
See: Worse than Equifax: Personal records of 340M people leaked online
How Straffic obtained the data is unknown but in response, the company stated that a vulnerability was foun ..
Support the originator by clicking the read the rest link below.
