InfoSecurity: Webmaster Portal Leaks 63 Million Records

InfoSecurity: Webmaster Portal Leaks 63 Million Records. “Back in July, researchers at WebsitePlanet teamed up with Jeremiah Fowler to discover an Elasticsearch database belonging to Digital Planet that was left online without password protection, exposing nearly 63 million records. These included emails, names, internal user ID numbers, internal records and user posts related to 863,412 users of the site.”

InfoSecurity Magazine: Cosmetics Giant Avon Leaks 19 Million Records

InfoSecurity Magazine: Cosmetics Giant Avon Leaks 19 Million Records. “A misconfigured cloud server at global cosmetics brand Avon was recently discovered leaking 19 million records including personal information and technical logs. Researchers at SafetyDetectives led by Anurag Sen told Infosecurity that they found the Elasticsearch database on an Azure server publicly exposed with no password protection or encryption.”

The Register: Time to check who left their database open and leaked 7.5m customer records: Hi there, Adobe Creative Cloud!

The Register: Time to check who left their database open and leaked 7.5m customer records: Hi there, Adobe Creative Cloud!. “Adobe has pulled offline a public-facing poorly secured Elasticsearch database containing information on 7.5 million Creative Cloud customers. The cloud-based silo was uncovered by infosec detective Bob Diachenko, who reported it to Adobe last week.”

SC Magazine: Exposed server leaks PII on all 16.6 million Ecuador citizens

SC Magazine: Exposed server leaks PII on all 16.6 million Ecuador citizens. “If another leaky Elasticsearch server may seem a little anticlimactic, considering how frequently they occur, the latest find by security researchers might have more of a ‘wow’ factor since it exposed information on nearly all of Ecuador’s 16.6 million citizens, 6.7 million of them children.”