WIKIFX REPORT: Online trading broker FBS exposes 20TB of data with 16 billion records
Zusammenfassung:The leaked data also included unredacted credit cards and passports of millions of users around the world.
" />The leaked data also included unredacted credit cards and passports of millions of users around the world.
The team of security researchers at WizCase led by Ata Hakcil discovered a massive trove of data belonging to FBS, a prominent online trading broker with offices in Belize and Cyprus.
FBS is home to 16 million traders and 400,000 partners from over 190 countries.
Data exposed on an Elasticsearch server
According to researchers, FBS exposed almost 20 terabytes worth of data comprising over 16 billion records. As a result, millions of FBS customers had their personal and sensitive information accessible online.
It is worth noting that the data was left open to public access on an Elasticsearch server without any security authentication. This means that anyone with knowledge of unsecured databases could have downloaded the data with no password required.
What data was exposed?
The data, that was thoroughly analyzed by the WizCase team included:
Country
Addresses
Full names
IP addresses
Email addresses
Phone numbers
Passport numbers
Operating system
Mobile device models
Emails sent to FBS users
Social media IDs including Facebook and Google
Whats worse is that the company also exposed files sent by users for account verification or identity confirmation. This included the following:
Personal photos
Drivers licenses
Birth certificates
Bank statements
National ID cards
Unredacted credit cards
The fact that FBS uploaded unredacted credit cards on a web server and left them exposed for public access could have a devastating impact on unsuspecting users including empty bank account, identity theft, extortion, and blackmailing scams to name a few.
However, the list of exposed data does not end here. In their blog post, Chase Williams of WizCase wrote that FBS also exposed its users IDs, their login history, unencrypted passwords encoded in base64, links to reset the password, and other sensitive information.
WikiFX-Broker
Aktuelle Nachrichten
Bitcoin und Kryptomarkt bleiben nach Zinssenkung der Fed um 25 Basispunkte im Aufwärtstrend
WikiFXCommerzbank übertrifft die Erwartungen –und sieht sich auf Kurs zu Rekordjahr
WikiFXDogecoin-Preisprognose: DOGE könnte nach 50%-Rally in zwanzig Tagen neues Jahreshoch erreichen
WikiFXKrypto-Boom durch Trump-Wahl: Bitcoin-Allzeithoch und die Chancen auf noch höhere Kurse
WikiFXTrump ist zurück: Was bedeutet das für Ripple und XRP?
WikiFXBitcoin markiert neues Allzeithoch nach Trumps Wahlsieg – wie weit kann die Rallye gehen?
WikiFXTrump-Sieg beflügelt Ripple: Kommt jetzt der XRP-Bull-Run?
WikiFXUS-Notenbank Fed senkt die Zinsen zwei Tage nach der Wahl um 0,25 Prozentpunkte
WikiFXScheitert der Intel-Deal an Donald Trump? Warum ein Top-Ökonom den Rückzug des US-Konzerns aus Magdeburg erwartet
WikiFXKrypto-Rakete Solana auf Höhenflug – Was Anleger jetzt wissen müssen
WikiFXWechselkursberechnung
