AI media manipulation service has leaked large trove of users’ data

As it was reported, Cybernews research group revealed that platform has passed users’ traffic through an unprotected ElasticSearch server. For instance, such protective measures as authentication or data encryption lacked. Basically, any interested party could have gained access to users’ data. 

According to the investigators, the overall volume of the leaked data was equal to 9 GB. The exposed data contained 22 million of strings with usernames, data on users’ virtual in-service currency and links to Amazon S3 bucket, where generated images were stored.

As the intruders could obtain some media files, uploaded as a reference, this incident posed significant risks to users’ confidentiality, because the exposed data may have contained some private issues.

Subscribe to get helpful articles and white papers. We discuss industry trends and give advice on how to deal with data leaks and cyberincidents.