A publicly exposed database featuring more than 600K sensitive files went public recently as revealed by leading security researcher Jeremiah Fowler.
Speaking more about the incident on Website Planet, Fowler mentioned how some of the files featured court records and vehicle records. This also featured reports related to property ownership. What is even more interesting is how many of the files came with labels such as background checks.
Such exposed documents entailed complete names, phone numbers, emails, addresses, and employment details. There were also some records related to accounts on social media and family members, not to mention criminal record details.
As per one researcher, the exposed database is under the ownership of SL Data Services, LLC. But the files inside were put under 16 different web domains including Propertyrec. This markets property and real estate research information.
The researcher also shared how they publicly disclosed the incident like a responsible entity should and how access was then denied. The same expert didn’t get any response from the firm related to the matter. In a single week since the incident arose and until public access was limited, the database kept growing to a significant amount.
Image: DIW-Aigen
The organization also provided background checks and other kinds of data for clients for low amounts to conduct a search. However, users would unknowingly become a part of subscription repeats instead of the usual one-time payments.
Such checks are rolled out without providing consent of the person under review. In places like the US, court records and offender status come under public records. The researcher provided a warning including how it might be actual ID theft taking place or how it might lead to more scams and phishing attacks. In cases where malicious individuals get access to the data, they might put together complete profiles of people, any associates, and any employers of loved ones.
Such a discovery is a great indicator for the second biggest data exposure led by a data broker since August of this year. The previous incident had to do with the National Public Data being breached and billions of user records being compromised. This incident exposed millions and shortly after it went public, the company failed for bankruptcy.
Read next: Study Finds ChatGPT Search Misattribution of News Content Threatens Publisher Visibility and Credibility
Speaking more about the incident on Website Planet, Fowler mentioned how some of the files featured court records and vehicle records. This also featured reports related to property ownership. What is even more interesting is how many of the files came with labels such as background checks.
Such exposed documents entailed complete names, phone numbers, emails, addresses, and employment details. There were also some records related to accounts on social media and family members, not to mention criminal record details.
As per one researcher, the exposed database is under the ownership of SL Data Services, LLC. But the files inside were put under 16 different web domains including Propertyrec. This markets property and real estate research information.
The researcher also shared how they publicly disclosed the incident like a responsible entity should and how access was then denied. The same expert didn’t get any response from the firm related to the matter. In a single week since the incident arose and until public access was limited, the database kept growing to a significant amount.
The organization also provided background checks and other kinds of data for clients for low amounts to conduct a search. However, users would unknowingly become a part of subscription repeats instead of the usual one-time payments.
Such checks are rolled out without providing consent of the person under review. In places like the US, court records and offender status come under public records. The researcher provided a warning including how it might be actual ID theft taking place or how it might lead to more scams and phishing attacks. In cases where malicious individuals get access to the data, they might put together complete profiles of people, any associates, and any employers of loved ones.
Such a discovery is a great indicator for the second biggest data exposure led by a data broker since August of this year. The previous incident had to do with the National Public Data being breached and billions of user records being compromised. This incident exposed millions and shortly after it went public, the company failed for bankruptcy.
Read next: Study Finds ChatGPT Search Misattribution of News Content Threatens Publisher Visibility and Credibility
