Blockchain Company OwlTing Leaks Sensitive Data Of 765000 Users
OwlTing leaked sensitive data of 765,000 users due to misconfigured AWS S3 bucket, exposing PII & hotel booking details, posing risk of identity theft & fraud.
Blockchain technology solutions company OwlTing inadvertently leaked sensitive data of 765,000 users due to an open access setting on their AWS storage (S3). The breach primarily affected hotel guests in Taiwan. Discovery On July 29, the Cybernews research team discovered a misconfigured Amazon S3 bucket during a routine OSINT investigation. The S3 bucket stored a large number of files. S3 buckets are simple cloud storage containers on Amazon Web Services (AWS), akin to folders used for storing files. Over 168,000 CSV and XLSX documents in the bucket contained personally identifiabl...