ZDNet: AWS error exposed GoDaddy business secrets. “Cybersecurity firm UpGuard’s Cyber Risk Team said on Thursday that a set of documents were left in an Amazon S3 bucket which was available to the public. GoDaddy is a domain name registrar and hosting provider which caters for millions of customers worldwide.”
Motherboard: Snapchat Source Code Leaked and Posted to GitHub. “GitHub is often the go-to place for hackers or researchers to archive interesting code or data dumps. But sometimes affected companies do their best to remove exposed data from the code repository site.”
Krebs on Security: Credit Card Issuer TCM Bank Leaked Applicant Data for 16 Months. “TCM Bank, a company that helps more than 750 small and community U.S. banks issue credit cards to their account holders, said a Web site misconfiguration exposed the names, addresses, dates of birth and Social Security numbers of thousands of people who applied for cards between early March 2017 and mid-July 2018.”
TechCrunch: Data breach exposes trade secrets of carmakers GM, Ford, Tesla, Toyota . “Security researcher UpGuard Cyber Risk disclosed Friday that sensitive documents from more than 100 manufacturing companies, including GM, Fiat Chrysler, Ford, Tesla, Toyota, ThyssenKrupp, and VW were exposed on a publicly accessible server belonging to Level One Robotics.” Isn’t that more of a leak than a breach? C’mon now.
Bleeping Computer: Robocall Firm Exposes Hundreds of Thousands of US Voters’ Records. “RoboCent, a Virginia Beach-based political robocall firm, has exposed the personal details of hundreds of thousands of US voters, according to the findings of a security researcher who stumbled upon the company’s database online.”
Gizmodo: Quiz App Left 120 Million Facebook Users’ Data Exposed as Recently as Last Month. “Facebook’s race to prove it’s a good and trustworthy company over the last few months kicked off when it was revealed that a quiz app sold user data to a political firm. Now, a different quiz app is getting some heat. A researcher discovered that a third-party app called NameTests left the data of 120 million Facebook users exposed to anyone who happened to find it.”
CNET: Exactis said to have exposed 340 million records, more than Equifax breach. “If you’re a US citizen, your personal information — your phone number, home address, email address, even how many children you have — may have just become easily available to hackers in an alleged massive data leak.”