More than 45M French records have been exposed in an open database more than likely compiled by malicious data collectors, reports Cybernews.
Researchers said the database is a combination of data stolen in at least five breaches. It was exposed on a cloud server.
Cybernews notified the server’s owners and helped take the archive down.
The open database was filled with millions of French-language personal records, which seem to have been collected from multiple databases, Cybernews added. The repository appears to include a population registry, a healthcare professionals’ register, financial and KYC data, and automotive insurance CRM information.
“Unlike traditional leaks caused by corporate misconfigurations, this exposure appears to be the work of a data broker or criminal collector. Such actors often merge stolen datasets from multiple breaches into unified databases to increase resale value and enable identity cross-linking,” the Cybernews team explained.
The mix of datasets were from different sectors, one repository and there was no protection. Cybernews called it a “severe privacy risk for millions of French citizens.”
Researchers were unable to identify the exact owner of the data. However, the information was stored on a cloud server based in France. After the research team contacted the hosting company, the repository’s owner appears to have fixed the issue and taken the information offline.
Simon Pamplin, CTO of Certes, said: “While we do not yet have the full details, the exposure of 45 million French records is deeply concerning. When it comes to personal data, there is no room for error, particularly when that information can be used to cause real harm to everyday citizens.
He said what we see time and again is malefactors pulling together information from multiple breaches and packaging it up into large data sets that can be sold or released. “That data often comes from a mix of public systems, organizational records and user networks, which makes the impact far wider than any single incident.”
Too many organizations still rely heavily on perimeter-based security and assume that keeping bad actors out of the network is enough, Pamplin explained. “When those defences fail, as they inevitably do, the data itself is often left exposed and readable. In cases like this, the problem is not just that a breach happened, but that the stolen data was accessible and usable.
“This case highlights the need for a thought-shift in how we think about security. Breaches will continue to happen. The critical question is whether the data taken can actually be used. Data-centric, quantum-safe protection ensures that even if information is stolen, it is worthless to criminals, removing the incentive and limiting the damage.”
Information Security Buzz News Editor
Kirsten Doyle has been in the technology journalism and editing space for nearly 24 years, during which time she has developed a great love for all aspects of technology, as well as words themselves. Her experience spans B2B tech, with a lot of focus on cybersecurity, cloud, enterprise, digital transformation, and data centre. Her specialties are in news, thought leadership, features, white papers, and PR writing, and she is an experienced editor for both print and online publications.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.