A security lapse at Canada’s fourth largest cell network, Freedom Mobile, exposed customer data.
Security researchers Noam Rotem and Ran Locar found an Elasticsearch server leaking five million logs containing customer data. The server wasn’t protected with a password, allowing anyone to access the data.
Source: Tech Crunch
Date: May 11th, 2019
- What sorts of failures in systems design and systems implementation lead to customer data being on a server that is not protected?
- How could a company avoid this glaringly obvious mistake?