Security News > 2021 > September > Colombian Real Estate Agency Leak Exposes Records of Over 100,000 Buyers

Colombian Real Estate Agency Leak Exposes Records of Over 100,000 Buyers
2021-09-23 02:55

More than one terabyte of data containing 5.5 million files has been left exposed, leaking personal information of over 100,000 customers of a Colombian real estate firm, according to cybersecurity company WizCase.

"There was no need for a password or login credentials to see this information, and the data was not encrypted," the researchers said in an exclusive report shared with The Hacker News.

The data exposure is the result of a misconfigured Amazon Web Services Simple Storage Service bucket, causing sensitive information such as clients' names, photos, and addresses to be disclosed.

The complete list of information contained in the documents is as follows -.

The bucket is also said to contain a database backup that includes additional information such as profile pictures, usernames, and hashed passwords.

The highly confidential nature of the data contained within the database makes it highly susceptible to exploitation by cybercriminals to mount phishing attacks and conduct a variety of fraud or scam activities, including tricking users into making additional payments and worse, reveal more personally identifiable information by tampering with the website's backend infrastructure.


News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/wX0ySGIpjl0/colombian-real-estate-agency-leak.html