Veeam, a Swiss-based data company exposed more than 445 million records after using a misconfigured host on Amazon Web Services. The issue was that it did not require any password to access.
An independent security researcher, Bob Diachenko, discovered the open database on September 5. Diachenko notified Veeam about the issue but received no response. The database remained open until September 9.
The information was from a four-year period and contained marketing information including: first name, last name, email, country, attribute values (IP address, referrer URL address, etc.) and the customer organization size.
The breach continues the conversation of data privacy and how companies handle the personal and sensitive information of customers. To ensure this doesn’t happen to your company, one step you can take is by encrypting data.
If you’re still concerned about protecting your customers data, contact us today to see how we can help you.