Forum: Digital Distortion

German cloud service prov

From Mike Powell@1:2320/105 to All on Fri Jan 24 10:43:00 2025

German cloud service provider exposes entire Georgian country population - millions of personal data files leaked

Date:
Fri, 24 Jan 2025 11:32:46 +0000

Description:
A non-password-protected database was recently discovered with millions of entries.

FULL STORY

A German cloud service provider has unintentionally exposed sensitive data on probably the entire population of Georgia, security researchers are saying.

Cybersecurity expert Bob Dyachenko, of SecurityDiscovery.com said they
recently discovered an non-password-protected Elasticsearch index containing
a wide range of sensitive personal details belonging to Georgians. The index hosted two indices, one with almost five million personal data records, and another with more than seven million.

Given that the entire population of Georgia counts less than four million people, its safe to assume that even with numerous duplicate entries, all of its citizens could be at risk of identity theft , phishing, and more.
Shutting down the leak

The archives contained peoples ID numbers, full names, birth dates, genders, phone numbers, and other sensitive information.

The data appears to have been collected or aggregated from multiple sources, potentially including governmental or commercial data sets and number identification services, Dyachenko said.

The researchers traced the instance back to a server owned by a German cloud service provider. The researchers did not name the company, and said that the server was taken offline shortly after discovery. It was left unclear if the company was notified of the leak. Therefore, we also dont know if any threat actors found the archives in the meantime, and if the data had been
exfiltrated elsewhere.

Without clarity on data ownership, recourse for affected individuals is limited, and it remains challenging to enforce data protection laws or seek accountability, the researcher said. This leak highlights the complexities of cross-border data protection and regulation.

Via Cybernews

======================================================================
Link to news story: https://www.techradar.com/pro/security/german-cloud-service-provider-exposes-e ntire-georgian-country-population-millions-of-personal-data-files-leaked

$$
--- SBBSecho 3.20-Linux
* Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)

Web-based telnet client

Other Links
What is a BBS?
Doors installed on this BBS
Digital Distortion Doors & Tools
Door stats
Trivia scores
Message networks
Terminal software
Synchronet archiver setup
Ready.gov anti-terrorist guidelines as of 2003

Other services
Telnet
RLogin
IRC
Email & news access

Feel free to send me an email.

BBS UPS stats
Who's Online
Recent Visitors
- xbit
  Sat Feb 22 04:36:09 2025
  from Portland, Or via HTTP
- Wilmaxs
  Wed Aug 16 04:20:48 2023
  via HTTP
- Mariachilds
  Fri Aug 11 02:57:26 2023
  from United states via HTTP
- detibi8403
  Sat Aug 5 04:44:08 2023
  via HTTP

System Info

Sysop:	Eric Oulashin
Location:	Beaverton, Oregon, USA
Users:	107
Nodes:	16 (0 / 16)
Uptime:	06:02:10
Calls:	5,846
Calls today:	5
Files:	8,496
D/L today:	363 files (296M bytes)
Messages:	343,103
Posted today:	1

German cloud service prov

Who's Online

Recent Visitors

System Info