A company claiming to provide “the world’s most secure online backup” leaked metadata and customer information in over 135 million records after misconfiguring an online database, Infosecurity has learned.
The trove included PII such as names, emails, phone numbers, business details (for corporate customers) and account usernames.
The team at vpnMentor discovered the privacy snafu as part of its ongoing web mapping project that has already uncovered major cloud data leaks at brands including Decathlon, PhotoSquared and Yves Rocher.
“The exposed database contained over 135 million records, totalling almost 70GB of metadata related to user accounts on SOS Online Backup. This included structural, reference, descriptive, and administrative metadata covering many aspects of SOS Online Backup’s cloud services,” vpnMentor explained.
Experts Comments
Submit Your Expert Comments
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Tim Erlin, VP of Product Management and Strategy , provides expert commentary at @Information Security Buzz.
"A misconfiguration can be like doing the attacker’s work for them...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/secure-backup-company-leaks-135-million-records-online-after-misconfiguration-experts-insight
Facebook Message
@Tim Erlin, VP of Product Management and Strategy , provides expert commentary at @Information Security Buzz.
"A misconfiguration can be like doing the attacker’s work for them...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/secure-backup-company-leaks-135-million-records-online-after-misconfiguration-experts-insight