Cybersecurity researchers at UpGuard have uncovered a vast online database containing billions of personal records, including sensitive information such as Social Security numbers and passwords. The exposed database, hosted by the German cloud provider Hetzner, included approximately 3 billion email addresses and passwords, along with 2.7 billion records containing Social Security numbers.
According to Greg Pollock, Director of Research at UpGuard, the database appeared to be an amalgamation of personal details from various historical data breaches, highlighting the ongoing issue of data brokers and cybercriminals combining old datasets for malicious purposes. While not all records were confirmed to be valid, the sheer volume of sensitive data raised serious concerns about the potential for identity theft on a massive scale.
After being notified about the exposed database on January 16, Hetzner’s customer removed the data by January 21, helping to mitigate the immediate risks associated with the breach. This incident underscores the critical importance of robust cybersecurity measures to prevent unauthorized access to sensitive personal information and protect individuals from the devastating consequences of identity theft.
Source: WIRED