Cybersecurity: Razer nu a securizat un cluster de Elasticsearch

Furtul de date din masini de Elasticsearch nesecurizate este tot mai des intalnit.

Un motiv pentru care atacatorii se concentreaza asupra masinilor de Elasticsearch este faptul ca de regula acolo sunt date brute, de cele mai multe ori chiar toate datele pe care o companie le detine despre o persoana sau un dispozitiv precum si faptul ca desi prin natura sensibilitatii informatiilor ar trebui securizata din radacina, cei mai multi dezvoltatori se focuseaza pe produs, nu pe baza de date si astfel apar erori umane dintre cele mai stupide.

In August, security researcher Volodymyr Diachenko discovered a misconfigured Elasticsearch cluster, owned by gaming hardware vendor Razer, exposing customers’ PII (Personal Identifiable Information).

The cluster contained records of customer orders and included information such as item purchased, customer email, customer (physical) address, phone number, and so forth—basically, everything you’d expect to see from a credit card transaction, although not the credit card numbers themselves. The Elasticseach cluster was not only exposed to the public, it was indexed by public search engines.

Full story: arstechnica.com/information-technology/2020/09/100000-razer-users-data-leaked-due-to-misconfigured-elasticsearch

Elasticsearch

Tags:

Internet

We will be happy to hear your thoughts

      Leave a reply

      Cristian Iosub