Misconfigured Elasticsearch Instance Exposes More Than 5 Billion Records

The collections contained information collected by a UK research firm on data breaches from the years 2012 to 2019.

Dark Reading Staff, Dark Reading

March 20, 2020

1 Min Read
Dark Reading logo in a gray background | Dark Reading

An open Elasticsearch instance has exposed more than 5 billion records in an incident discovered on March 16. The irony is that the data in two Elasticsearch collections appears to be information on data breaches collected by a UK-based research firm from 2012 to 2019.

The structured data includes extensive information on the breaches, including domain, source, contact email address, and password. While many of the incidents appear to have been public knowledge, some of the information in the database is not and therefore could present at least an enhanced phishing risk for the victims.

According to security researcher Bob Diachenko, who found the exposed instance, after notification the presumed owner of the data did not respond to his message, but the collections were taken offline within an hour.

For more, read here.

Edgepromohorizontal.jpgCheck out The Edge, Dark Reading's new section for features, threat data, and in-depth perspectives. Today's featured story: "Security Lessons We've Learned (So Far) from COVID-19."

About the Author

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights