The CyberNews investigations team discovered an unsecured data bucket that belongs to Panion, a Swedish software company.
The unprotected bucket contains more than 2.5 million user records, including full names, email addresses, genders, interests, location coordinates and last login dates, as well as selfies and document photos.
The files containing the records were left on a publicly accessible Amazon Web Services (AWS) server, allowing anyone to access and download the data.
Aside from the user records, the bucket contained hundreds of thousands of images presumably exchanged by users of the Panion app.
What’s more, fresh files containing updated user records were added to the bucket periodically, which means that the user records were up to date.
After we contacted Amazon regarding the exposed Panion bucket, access to files containing user data was disabled.
Full article on https://cybernews.com/security/social-media-app-leaking-data-of-172000-users/
#dataleak #panion #sweden #dataleak #app #socialmedia #mindyourdata #yokdata #blog