The data was leaked due to a misconfiguration on an ElasticSearch server.
Researchers at cybersecurity firm WizCase discovered a misconfigured cloud server that exposed exclusive customers data of a US-based tech firm that manages the famous Family Tree Maker software, also called FTM.
The research team led by Avishai Efrat claims that the database contained around 25GB worth of data belonging to “The Software MacKiev Company,” which syncs Ancestry.com’s user data, a popular platform for family history search. It is worth noting that previously, Ancestry.com suffered a data breach in which login credentials of 300,000 accounts were leaked in plain-text.
As for the latest incident, according to researchers, approximately 60,000 MacKiev users are reportedly affected by the data exposure after a misconfigured ElasticSearch server was left open for public access.
See: DNA testing website MyHeritage hacked; 92 million user accounts stolen
The leaked data included sensitive user details like:
IP addressTimestamps
Email address
Refunds (if applicable)
User support messages
Internal system user IDs
Subscription type and status
Technical data, such as error logs
User location data, including geolocation coordinates and cities
Family Tree Maker, a genealogy software, was released in 1989 and has had many different corporate owners, including The Learning Company, Broderbund, and Mattel, before Ancestry.com. Software MacKiev bought the Windows version of FTM from Ancestry back in 2016 and developed its MacOS version.
Our team of white-hat hackers found an exposed MacKiev server that leaked 25GB of Ancestry user data and MacKiev ..
Support the originator by clicking the read the rest link below.
