Fortune 500 company leaked 264GB in client, payment data
After discovering the server through vpnMentor’s web mapping project, the company took a sample of the leaked information, which was “a serious leak as far as we could see.” “With a simple search of the exposed database, our researchers were able to find the payment information, PII, and full company and account details for end-users and managed service providers (MSPs) — including for a criminal defense attorney, a utilities service provider, and more,” vpnMentor says. See also: Massive Quest Diagnostics data breach impacts 12 million patients
Private API keys, bank and payment information, usernames and unencrypted passwords, and process information relating to Tech Data clients’ internal systems and SAP builds were exposed.
Source: www.zdnet.com