More than five billion records were exposed after a Keepnet Labs Elasticsearch “data breach database” housing a trove of security incidents from the last seven years was left unprotected.
“Data was very well structured,” wrote security researcher Bob Diachenko, who discovered the Elasticsearch instance, of the information, which included hashtypes, leak dates, passwords, email addresses, email domains and leak sources.
Diachenko said he was able to confirm some of the “prominent” leaks in the database, such as Adobe, Last.fm, Twitter, LinkedIn, Tumbler and VK.