Misconfigured Elasticsearch Instance Exposes More Than 5 Billion Records

  /     /     /  
Publicated : 23/11/2024   Category : security


Misconfigured Elasticsearch Instance Exposes More Than 5 Billion Records


The collections contained information collected by a UK research firm on data breaches from the years 2012 to 2019.



An open Elasticsearch instance has exposed more than 5 billion records in an incident discovered on March 16. The irony is that the data in two Elasticsearch collections appears to be information on data breaches collected by a UK-based research firm from 2012 to 2019.
The structured data includes extensive information on the breaches, including domain, source, contact email address, and password. While many of the incidents appear to have been public knowledge, some of the information in the database is not and therefore could present at least an enhanced phishing risk for the victims.
According to security researcher Bob Diachenko, who found the exposed instance, after notification the presumed owner of the data did not respond to his message, but the collections were taken offline within an hour.
For more, read
here
.
Check out
The Edge
, Dark Readings new section for features, threat data, and in-depth perspectives. Todays featured story:
Security Lessons Weve Learned (So Far) from COVID-19.


Last News

▸ Hack Your Hotel Room ◂
Discovered: 23/12/2024
Category: security

▸ Website hacks happened during World Cup final. ◂
Discovered: 23/12/2024
Category: security

▸ Criminal Possession of Government-Grade Stealth Malware ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Misconfigured Elasticsearch Instance Exposes More Than 5 Billion Records