A large unprotected database containing sensitive user information from Passion.io was exposed, risking potential misuse. The breach highlights the importance of proper data security measures for app-building platforms. #PassionioDataLeak #DataProtection
Keypoints
- A massive unencrypted database with over 3.6 million records was publicly accessible, exposing personal and financial data.
- The exposed data included names, emails, physical addresses, payment details, and creator-uploaded content, some involving images of children.
- Passion.io responded promptly by restricting public access and working on fixing the security vulnerability.
- Cybersecurity experts emphasize the need for encryption, multi-factor authentication, and regular security audits to prevent such breaches.
- The incident serves as a warning about the risks of data leaks and the importance of safeguarding user and organizational information.
Cybersecurity researcher Jeremiah Fowler, vpnMentor uncovered a massive unprotected database allegedly tied to Passion.io, a no-code app-building platform used by influencers, coaches, and entrepreneurs. The database—shockingly unencrypted and without a password—contained a staggering 3,637,107 records, totaling 12.2 terabytes of data.
https://www.vpnmentor.com/news/report-passionapps-breach/