You searched for elasticsearch | SC Media

Your search for elasticsearch returned 52 results

Active Filters

Click on a filter below to refine your search. Remove a filter to broaden your search.

Security News remove

Your search for elasticsearch returned 52 results

Sort Results:

Relevant Recent
Database security, Privacy & Compliance News and Analysis, Security News

Five billion records exposed in open ‘data breach database’

More than five billion records were exposed after an Elasticsearch “data breach database” managed by a U.K.-based security firm and housing a trove of security incidents from the last seven years was left unprotected. “Data was very well structured,” wrote security researcher Bob Diachenko, who discovered the Elasticsearch instance, of the information, which included hashtypes,…
Commission offers suggestions for stemming online spy threat from China
Data Breach, Security News

Chinese HR firms and recruiting agencies found to leak more than half a billion resumes

Chinese companies were discovered leaking more than half a billion resumes on the web via poorly secured ElasticSearch and MongoDB databases. The leaks occurred solely at Chinese firms over the last few months from Chinese human resource-focused companies in batches ranging from a handful of CVs to professional executive head-hunting firms all leaking customer details…
Amazon Logo
Data Breach, Security News

Double exposure: 24 million loan records also exposed on open Amazon S3 bucket

The original mortgage and credit documents involved in the 24 million Elasticsearch data breach that was revealed earlier this week also have been found residing in an open Amazon S3 bucket by the cyber researcher behind the original discovery. Bob Diachenko told TechCrunch, which worked with him on the original investigation, that more digging was…
Cloud Security, Data Breach, Privacy & Compliance News and Analysis, Security News

Report: Boomoji app developer leaves customer data exposed on open database

The developers of make-your-own-avatar app Boomoji reportedly neglected to password-protect two of their internet-connected databases, thus publicly exposing the personal data of roughly 5.3 million users. The wide-open databases, from Elasticsearch, stored users’ names, genders, countries and phone types all in plain text, TechCrunch reported yesterday. Moreover, the databases also contained unique user IDs, each…
gym
Cloud Security, Privacy & Compliance News and Analysis, Security News

FitMetrix data exposed on unprotected Elasticsearch servers

A trio of unprotected Elasticsearch servers hosted by Amazon Web Service (AWS) left 113.5 million records of fitness tracking company FitMetrix customers exposed, according to the security researcher who discovered the databases. The company, which creates software for the likes of SoulCycle and CrossFit, was acquired in February by wellness technology vendor Mindbody, failed to…
Security News

ElasticSearch server exposed data of nearly 57M U.S. residents

An ElasticSearch server database containing the information of nearly 57 million U.S. residents was found to have been left exposed without a password. On November 20, 2018, Bob Diachenko, director of cyber risk research for Hacken, which also discovered the Kars4Kids leak, discovered the breach while conducting a security audit of publicly available servers with…
Data Breach, Health Care, Security News

UChicago Medicine secures database after publicly exposing info on donors and patients

The University of Chicago Medicine scrambled to secure a database containing information on patients as well as existing and potential financial donors, after a researcher discovered that a misconfiguration left nearly 1.68 million records exposed to the public. Bob Diachenko, cyber threat intelligence director at Security Discovery, said in a June 3 company report that…
Defending the database
Data Breach, Security News

22 million emails found in mystery open database

An otherwise unremarkable find of an open Elasticsearch database containing millions of records became a Sherlock Holmes mystery as researchers cannot figure out the database’s origins. Security researcher Troy Hunt, of Have I Been Pwned, was informed in February about an open database he has named db8151dd containing 90GB of data containing 22.8 million emails.…
Cloud Security, Security News

Job seeker’s data exposed on open Ladders database

The employment website Ladders exposed almost 14 million user records when it left an Amazon Elasticsearch database unprotected. Security researcher Sanyam Jain found the open server and informed TechCrunch of the situation. After Ladders was informed of the issue the server was quickly taken down the issue is being addressed. The information that was exposed…
Next post in Cloud Security