AI media manipulation service has leaked large trove of users’ data
21.02.2023Back to news
As it was reported, Cybernews research group revealed that Cutout.pro platform has passed users’ traffic through an unprotected ElasticSearch server. For instance, such protective measures as authentication or data encryption lacked. Basically, any interested party could have gained access to users’ data.
According to the investigators, the overall volume of the leaked data was equal to 9 GB. The exposed data contained 22 million of strings with usernames, data on users’ virtual in-service currency and links to Amazon S3 bucket, where generated images were stored.
As the intruders could obtain some media files, uploaded as a reference, this incident posed significant risks to users’ confidentiality, because the exposed data may have contained some private issues.