vpnMentor – PossibleThreat Articles

Private photos leaked by PhotoSquared’s unsecured cloud storage

February 19, 2020 0 Comments amazon s3, amazon simple storage service (s3) bucket, Amazon web services, amazon web services (aws) storage bucket, Android, AWS, breach, CCPA, Cloud, cloud storage, credit card fraud, data breach, data leak, data loss, exposed database, financial fraud, identity theft, iOS, leak, Mobile, personally identifiable information, phishing, photo apps, photosquared, PII, port scanning, Privacy, s3 database, security threats, vpnMentor, web mapping

Credit to Author: Lisa Vaas| Date: Wed, 19 Feb 2020 11:49:20 +0000

With no password required and no encryption in place, a burglar or ID thief could have seen your photos, your address and more.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/v6L-VwD68-Y” height=”1″ width=”1″ alt=””/>

Security Sophos

Sensitive plastic surgery images exposed online

February 18, 2020 0 Comments amazon, Amazon web services, AWS, aws bucket, Cloud Security, cloud storage, data leak, data loss, data protection, exposed data, medical data, medical images, next motion, online privacy, personally identifiable information, PII, plastic surgery, Privacy, security threats, vpnMentor

Credit to Author: Danny Bradbury| Date: Tue, 18 Feb 2020 11:04:56 +0000

Researchers at VPN advisory company vpnMentor have found yet another online data exposure caused by a misconfigured cloud database.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/3bHx9OL42rQ” height=”1″ width=”1″ alt=””/>

Security Sophos

Data about inmates and jail staff spilled by leaky prison app

February 12, 2020 0 Comments amazon, amazon s3, amazon simple storage service (s3) bucket, Cloud, cloud storage, correctional facility, correctional risk services, crs technologies, Cryptography, data breach, data leak, data loss, exposed database, google cloud, inmates, jailcore, jailhouse, Law & order, PII, port scanning, prescriptions, prison, prisoners, Privacy, privacy policy, s3 bucket, security threats, sha-256, ssl certification, terms of service, tos, vpnMentor, web mapping

Credit to Author: Lisa Vaas| Date: Wed, 12 Feb 2020 10:16:24 +0000

A web-mapping project came across detainees’ prescriptions and other PII that could be used by identity thieves to victimize prisoners.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ypFJWLIWMOE” height=”1″ width=”1″ alt=””/>

Security Sophos

Leaky database spills data on 20 million Ecuadorians and businesses

September 18, 2019 0 Comments BEC, data loss, Database, ecuador, government data, Government security, julian assange, leak, novaestrat, novastratech, phishing, PII, security threats, vpnMentor

Credit to Author: Lisa Vaas| Date: Wed, 18 Sep 2019 12:21:46 +0000

Included are deep details on 7 million minors, one grownup named Julian Assange, and perhaps a few million deceased Ecuadorians.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/oulqmkZ0WNw” height=”1″ width=”1″ alt=””/>

Security Sophos

Leaky database full of fake Groupon emails turns out to belong to crooks

September 13, 2019 0 Comments data loss, Elasticsearch, fraud, groupon, NeuroTicket, Noam Rotem, Ran Locar, ransom, security threats, Ticketmaster, tickets, TickPick, vpnMentor, vulnerability

Credit to Author: Lisa Vaas| Date: Fri, 13 Sep 2019 12:43:47 +0000

Crooks made bogus accounts to buy tickets with fake credit cards, resold them to unsuspecting buyers, and left the database-o-fraud wide open.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/GRSpDu39Kqg” height=”1″ width=”1″ alt=””/>