1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Over 750 million records exposed by ERP firm data breach find ou

    From TechnologyDaily@1337:1/100 to All on Tue Jul 23 13:15:05 2024
    Over 750 million records exposed by ERP firm data breach find out if you're safe

    Date:
    Tue, 23 Jul 2024 13:04:28 +0000

    Description:
    Plenty of sensitive data was sitting unprotected online, including email addresses and tax data.

    FULL STORY ======================================================================

    A major Enterprise Resource Planning ( ERP ) firm from Mexico kept an unprotected database containing sensitive information on hundreds of
    thousands of users online for anyone to view.

    A report from cybersecurity researcher Jeremiah Fowler, who discovered the archive and reported his findings to Website Planet , noted the database, available to anyone who knew where to look, contained 769 million records.

    These records contained secrets and personally identifiable information, such as API keys, secret keys, bank account numbers, tax identification numbers, and email addresses. The database is 395GB heavy, and belongs to
    ClickBalance, a software provider offering various cloud-based business services that help with administration automation, accounting, inventory, payroll, and more. Disruptive potential

    Website Planet describes ClickBalance as one of Mexicos largest ERP
    technology providers, and as soon as Fowler found the archive and pinpointed its owner, he reached out to the company, which locked it down within hours.

    Still, it is not known if any malicious players had already discovered it,
    and whether or not they already used the data in any of their campaigns. Only a detailed forensic investigation can determine that, Fowler argues.

    While obtaining tax identification numbers, or bank account numbers, is certainly dangerous, and allows cybercriminals to run identity theft campaigns, stealing active email addresses is arguably more valuable, since
    it allows them to mount phishing attacks through which they can deploy malware, and even ransomware.

    Unprotected databases continue to be one of the most common causes of data leaks, despite their disruptive potential. Many large enterprises and government organizations were found to have kept online databases without any safeguards. In one such instance, the entire Brazilian population had their personal information leaked.

    In early January 2024, researchers from Cybernews discovered an unprotected database that held personal information on approximately 223 million
    Brazilian citizens . More from TechRadar Pro The AT&T data breach can still trace back to you directly - here's how to stay safe Here's a list of the
    best malware removal tools around today These are the best endpoint security tools right now



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/data-breach-sees-over-750-million-recor ds-exposed-by-erp-firm-find-out-if-youre-safe


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)