Data of nearly 700,000 Amex India customers exposed via unsecured MongoDB server

Catalin Cimpanu reports:

The personal details of nearly 700,000 American Express (Amex) India customers have been accidentally left exposed online via an unsecured MongoDB server.

The leaky server, which was left exposed online without a password, was discovered three weeks ago by Bob Diachenko, Director of Cyber Risk Research at cyber-security firm Hacken.

Most of the data on the server appeared to have been encrypted and required a decryption key to view, but the researcher says 689,272 records were stored in plaintext and accessible to anyone who stumbled upon the database.

Read more on ZDNet.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.