- DynaRisk reports several leaks concerning global online shopping brands, exposing over 1.4 billion data records.
- Data records including email addresses, account details, order history and other personal details were discovered, accessible to anyone with the know-how to import it.
- Companies must consistently vet third-party vendors to protect their customer data.
12 February 2020: Global cyber security firm DynaRisk has discovered several unprotected and misconfigured servers (without any authentication) leaking valuable data relating to brands including Amazon and Alibaba, highlighting a global issue concerning all online brands. Five leaks were discovered in total, with a combined file size of 3 TB and over 1.4 billion records. Two of the leaks contain Amazon marketplace records, while another contains Alibaba sales records.
The exposed data was detected by a member of DynaRisk’s intelligence team who discovered the leaking Elastic search databases. In one instance, a hacker left a note demanding ransom in return for the copy of the Amazon data they took (see Fig. 1).
The database owners were notified, detailing what information was leaking and the size of each leak individually. Three of the five were closed, however all were leaking over a period of a few weeks. Aside from the database containing a ransom note, it is unknown if the others were discovered by threat actors.
The databases contain the following information in varying combinations:
- Email addresses
- Personal Names
- Ages and dates of birth
- Mortgage information
- Bank transaction information
- Property details
- Physical Addresses
- Zip/post codes
- City/country information
- Number of children per household
- Phone Numbers
- Billing information
- Shipping information
- Tracking numbers
- CFF codes
- Transaction information
- Supplier information
- Products pictures URL`s
- Geo coordinates
- IP addresses
- Skype Accounts
The records in question were verified by DynaRisk’s intelligence team by testing sample records at random.
Andrew Martin, CEO and Founder of DynaRisk commented:
“Unfortunately, despite companies investing to protect their customer data, all it takes is one third party vendor to undo all the hard work. We have seen data from hundreds of companies leaking on the web as a result of a third-party failing to secure servers and anyone that knows where to look on the 'net will be able to spot and siphon off all that data, without any authentication.”
“The Amazon related leaks are particularly concerning as the brand is consistently impersonated in phishing scams – specifically, fake refund notifications and order updates. With the data records exposed in these leaks, cyber criminals will be able to create highly targeted scams.”
“For the individuals affected in leaks like this, and the public generally, it’s more important than ever to be aware of the impacts this can have. People should be regularly scanning their email address using data breach and leak checking tools to help gauge where their information may be been exposed. Cyber hygiene also plays a huge part in making sure that any aftereffects are kept to a minimum; people using the same passwords across several sites and those unable to spot fraudulent emails prime targets for fraudsters.”
Note to editors
For more information concerning the leaks including screen shots and samples of the data, please contact firstname.lastname@example.org.
Users can scan their email address using DynaRisk’s data breach checking tool (free). Visit https://www.dynarisk.com/home/data-breach-scanner.
For more information, please contact:
Tiffiny Franklin, Marketing Manager
email@example.com | +44 (0) 203 086 8875
DynaRisk is global cybersecurity firm which uses intelligence-led data to calculate personalised Cyber Security Scores for its customers, so that they know how safe they are online and whether they are at risk or have been exposed to any data breaches. DynaRisk alerts people of threats and encourages them to act to protect themselves against future attacks, through easy to follow steps that help remove threats to keep their business and personal data safe online. DynaRisk offers training and empowers people to make the changes they need to improve their Cyber Security Score, so they can stay protected and enjoy all the benefits of the internet without worrying about their online security.