Massive EY Data Leak Exposes Sensitive Information Due to Cloud Misconfiguration
The Register
|
Contributed by: Drex DeFord
Summary
A recent discovery by Dutch cybersecurity firm Neo Security revealed a substantial exposure of a 4TB SQL Server backup file belonging to EY, which was mistakenly accessible on the open web. This unencrypted file contained critical sensitive information, including API keys and user credentials, creating a significant risk for security breaches akin to having keys to a vault. The incident underscores the vulnerabilities inherent in cloud storage, where misconfigurations can lead to major data leaks. As healthcare technology increasingly relies on cloud solutions, this situation serves as a critical reminder for professionals to prioritize stringent security measures and proper configuration management.
