Exploit: Misconfiguration
Coninsa Ramon H: Real Estate Firm
Risk to Business: 1.713 = Severe
A database owned by Colombian real estate firm Coninsa Ramon H has leaked data. More than one terabyte of data containing 5.5 million files was left exposed, leaking the personal information of over 100,000 customers of a Colombian real estate firm data exposure is the result of a misconfigured Amazon Web Services (AWS) Simple Storage Service (S3) bucket.
Individual Risk: 1.605 = Severe
The data in the exposed bucket includes internal documents like invoices, proof of income documents, quotes, and account statements dating between 2014 and 2021. The customer PII leaked may include names, phone numbers, email addresses, residential addresses, amounts paid for estates, and asset values. The bucket may also contain a database backup that includes additional information such as profile pictures, usernames, and hashed passwords.
Customers Impacted: Unknown
How It Could Affect Your Customers’ Business exposed databases are a cybersecurity incident that companies don’t need to face if everyone is on the same page about the importance of security.
Source: The Hack News