Nextcloud leaks 367K records — European cloud giant exposes staff and clients in major breach



  • Exposed ElasticSearch cluster at Nextcloud contained ~367k records (8GB), including employee data, client contracts, and scripts
  • Sensitive information such as staff emails and client company details was left unencrypted; Nextcloud secured the archive within two days after notification
  • Company attributed the incident to hosting misconfiguration, stressing customer servers were unaffected, though researchers warn attackers may have accessed the data

European cloud provider Nextcloud kept an unprotected database on the public internet, exposing sensitive internal and client data to anyone who knew where to look, experts have revealed.

Nextcloud is a free, open source platform that lets users create their own private cloud. It is often described as an alternative to Google Drive, or Microsoft 365, which allows users to control where their data sits.

https://cdn.mos.cms.futurecdn.net/S6qqNHNiXvsDD9ymatwGjK-1920-80.jpg



Source link

Latest articles

spot_imgspot_img

Related articles

Leave a reply

Please enter your comment!
Please enter your name here

spot_imgspot_img