A few months back, we saw the personal data of over 188 million people leak due to an insecure MongoDB Database. Then in September 2019, we saw the data of almost every Ecuadorian leaked in a massive data breach. A similar incident has occurred now but with Russia.
According to a report by Comparitech, more than 20 million tax records were found on an unprotected Amazon Web Services (AWS) Elasticsearch Cluster with personally identifiable information of Russian Citizens from 2009-2016. The timeline revealed provides an overview of how the incident folded over the months:
Evident from the timeline, we could safely say that the data remained unexposed for over a year. Although it is not confirmed if the data got into unauthorized hands, we do have information on the fact that “the first database contained more than 14 million personal and tax records from 2010 to 2016, and the second included over 6 million from 2009 to 2015.”