Slashdot Mirror

← Back to Stories (view on slashdot.org)

SKY Brasil Exposes 32 Million Customer Records

Posted by BeauHD on from the another-day-another-breach dept.

Independent security researcher Fabio Castro found data belonging to 32 million customers of SKY Brasil exposed online. "Using the advanced features of the Shodan search engine, he was able to discover multiple servers in Brazil running Elasticsearch that made information available without authentication," reports BleepingComputer. "A cluster of servers called 'digital-logs-prd' attracted the researcher's attention and with a simple command, he listed the indices available, one of them 429.1GB in size." From the report: The file included personally identifiable information of SKY Brasil customers, which featured full name, email address, service login password, client IP address, payment methods, phone number, and street address. SKY Brasil is a telecommunications company that also offers television services, being the second largest provider of pay-TV services in the country, according to statistics from March. In a conversation with BleepingComputer, Castro said that he reported his findings to the company who fixed the problem by restricting access with a password, an operation that takes just a few minutes. Because the server has been exposed for a long time, the protective measure may have come too late. Castro told us that it is very possible that criminals have already grabbed the data.

19 comments

  1. Ads by Anonymous Coward · · Score: 0

    Back to back ads? That wouldnâ(TM)t be annoying, right? Just the usual suspects buying targeted ads

    1. Re: Ads by Anonymous Coward · · Score: 0

      Did they make a firehose available yet?

  2. Re: THERE WILL BE CONSEQUENCES NAZI FAGGOT KEN DOL by Anonymous Coward · · Score: 0

    Get over yourself. Who could live like you, constantly checking for new posts to spam ?

  3. Re: THERE WILL BE CONSEQUENCES NAZI FAGGOT KEN DOL by Anonymous Coward · · Score: 0

    You need to think through your complaint better.

  4. Re: THERE WILL BE CONSEQUENCES NAZI FAGGOT KEN DO by Anonymous Coward · · Score: 0

    Fentanyl would help a lot. Otherwise his posts are falling on very deaf ears

  5. Re: THERE WILL BE CONSEQUENCES NAZI FAGGOT KEN DO by Anonymous Coward · · Score: 0

    Soon to be dead ears if he doesn't stop lying though, there are consequences for a lifetime of dishonesty.

  6. "Independent security researcher" ? by Anonymous Coward · · Score: 0

    is this the new term for nosey busy body ?

  7. "Exposes"? "Leaks"? "Hacks"? BULLSHIT! by Anonymous Coward · · Score: 0

    This is how you sell this stuff. Too bad the bosses don't go to jail for it. They most definitely should.

    1. Re: "Exposes"? "Leaks"? "Hacks"? BULLSHIT! by Anonymous Coward · · Score: 0

      A case of the great for me good for you, not great for me bad for you

  8. Re: THERE WILL BE CONSEQUENCES NAZI FAGGOT KEN DO by Anonymous Coward · · Score: 0

    Blah blah blah. All I want to know is what did they fix and when? Did they just set permissions and start the server or does that leave a gaping hole and needs more careful configuration? Are they telling us the truth or do we need to get congress to make them answer questions directly? This is a huge pain point for consumers? Are we just going to shrug and move on and it all goes away or are we going to be proactive?

  9. Bleep bleep copy/paste BeauHD instant article by Anonymous Coward · · Score: 0

    Not a new term. It means they're too cheap to register a company to give themselves airs.

    1. Re: Bleep bleep copy/paste BeauHD instant article by Anonymous Coward · · Score: 0

      With and by the snobs

  10. Well'p by AtomicSymphonic · · Score: 2

    At this point, who *hasn't* had their information leaked by some company or agency?

    1. Re: Well'p by Anonymous Coward · · Score: 0

      Homeless people. They are off the grid. Everyone needs to be more like them

    2. Re:Well'p by Anonymous Coward · · Score: 0

      That's why the correct approach is to hold banks and other financial institutes responsible if they got defrauded by someone pretending to be their customers. No more "identity theft" bullshit.

      That is the approach for most of Europe and Asia, if someone pretended to be me and took our a big loan or withdrawn money from a bank, it would be the bank taking the loss, not me.

      Only in America could you trick a bank into giving you money by just providing some personal information of their customers. And only in America could the bank then pass the loss to their customer as "identity theft".

      Personal information is not secrets that can be used for authentication.

  11. Re: THERE WILL BE CONSEQUENCES NAZI FAGGOT KEN DOL by Anonymous Coward · · Score: 0

    Shut up APK. Go away. No one wants you here.

  12. Re: THERE WILL BE CONSEQUENCES NAZI FAGGOT KEN DOL by Anonymous Coward · · Score: 0

    Shut up C6gummer. Go away. No one wants you nazi faggots here.

  13. Re: THERE WILL BE CONSEQUENCES NAZI FAGGOT KEN DOL by Anonymous Coward · · Score: 0

    The creimertards, "APK", Trump imprisonment fantasizers, antisemitic screed spammers, Russian-conspiracy theorists, and the faggot/INCEL/pedophile/traitor/Nazi trolls are all the work of disreputable political operative David Brock, and his fifty cent army of "nerd virgins".

    https://www.motherjones.com/politics/2014/09/david-brock-hillary-clinton-correct-the-record/

    Earlier they gained notoriety for their duplicitous "Correct the Record" misinformation campaign on behalf of famously corrupt presidential candidate Hillary Clinton.

    They are are employed by a Democrat affiliated "progressive" propaganda works called "American Bridge 21st Century". According to Wikipedia their biggest funder is George Soros.

    https://en.m.wikipedia.org/wiki/American_Bridge_21st_Century

    The purpose of their spamming and cyber-stalking is to silence unapproved narratives. They do this by deterring free public discussion and poisoning any forum that does not implement censorship of unapproved viewpoints.