Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

Data about 57 million people exposed by Elasticsearch servers

From: InfoSec News <alerts () infosecnews org>
Date: Thu, 29 Nov 2018 10:23:06 +0000 (UTC)
https://www.cyberscoop.com/elasticsearch-data-exposure-hacken/

By Jared Beinart
CYBERSCOOP
Nov 28, 2018
A data breach involving Elasticsearch search-engine technology exposed the personal information of nearly 57 million people for at least two weeks, according to report released Wednesday by the cybersecurity organization Hacken.
The breach exposed 73 gigabytes of data as early as Nov. 14, Hacken said, including the names, employers, job titles, emails, addresses, phone numbers and IP addresses of 56,934,021 U.S. residents. There was a separate cache of data titled "Yellow Pages," the report said, with 25 million records about businesses, including information such as names, company details, zip addresses, latitude/longitude, census tract, phone numbers, web addresses, emails, revenue numbers and more.
Hacken said it was unclear where the leak originated, but the formatting of the data appeared to have similarities to fields used by Canadian data management company Data & Leads. The database is no longer exposing information to the public, Hacken said. 

[...]



--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
Previous By Date Next
Previous By Thread Next

Current thread: