This widely-used instant loan app leaks nearly 30 million files of user data
Posted by:
David Wilson
Instant loan company FatakPay, based in India, recently came under fire for storing sensitive user data in an unprotected S3 bucket. The exposed information, including names, addresses, IDs, and more, was available online for an unknown duration before security researchers discovered it in mid-September 2024. This breach highlighted the ongoing issue of misconfigured databases leading to data leaks, with organizations often unaware of their responsibilities in terms of data security on cloud platforms. FatakPay has since locked down the database, but has not issued an official statement on the matter. This incident serves as a reminder of the importance of securing sensitive information to prevent potential misuse by malicious actors.
Recent Posts1
