Security researchers have discovered an unsecured server containing 4 terabytes of personal data — 1.2 billion records in total — exposed and easily accessible online, Wired reported today.
The open server held profiles of hundreds of millions of people. Leaked data includes home and cellphone numbers; social media profiles for Facebook, Twitter, LinkedIn, and Github; work histories seemingly pulled from LinkedIn; nearly 50 million unique phone numbers; and 622 million unique email addresses. It didn’t contain sensitive data such as credit card numbers, Social Security numbers, or passwords, which are considered relatively more valuable to attackers.
How One AI-Driven Media Platform Cut EBS Costs for AWS ASGs by 48%
It seems this trove of information is made up of four separate datasets. Of these, three had labels indicating they were from People Data Labs, a data broker claiming to sell information on more than 1.5 billion people, including billions of email addresses and Facebook URLs and IDs.
Read more: Dark Reading