Swiss data management services provider, Veeam, reportedly left a database with over 200 GB of sensitive data on a MongoDB server which was completely unsecured and viewable to the public.

The leak was discovered by security researcher Bob Diachenko who immediately warned the company. The vulnerable trove of data which included around 445 million customer records got taken offline four days later.

Experts pointed out that leaks in the past had often been caused by misconfigured instances of MongoDB, which was initially used for access from local networks.  

 

Source: Bleeping Computer

Leave a Comment

Your email address will not be published. Required fields are marked *