Exploit: Hacking
D.W. Morgan: Logistics and Supply Chain Management
Risk to Business: 1.717= Severe
Researchers at Website Planet uncovered a data breach at D.W. Morgan because of a misconfigured AW3 bucket. The exposed data included more than 2.5 million files equating to over 100GB of data related to D.W. Morgan’s clients and their shipments from 2013 to late 2021. Some files also included sensitive client data and employee PII. Website Planet revealed that records pertaining to deliveries for clients including Cisco, and Life Technologies were also exposed in files.
Individual Impact: No specifics about any consumer/employee PII or financial data loss were available at press time.
Customers Impacted: Unknown
How It Could Affect Your Customers’ Business Service providers like this are goldmines for cybercriminals, amping up supply chain risk for everyone.
Source: Website Planet