Another company has misconfigured another AWS-hosted database, and this time the results are 13 million user profiles exposed. Employment-recruitment site Ladders exposed the records of job seekers who had signed up for the possibility of landing a high-end position.
Security researcher Sanyam Jain found the database as part of his ongoing research on exposed data. The information left open included contact details and detailed employment histories — information that could be used by attackers to form compelling spear phishing messages.
According a TechCrunch report, Ladders removed the database from public view within an hour of being contacted by the publication.
For more, read here.
Join Dark Reading LIVE for two cybersecurity summits at Interop 2019. Learn from the industry's most knowledgeable IT security experts. Check out the Interop agenda here.