Setting up Elasticsearch, the open-source system that many companies large and small use to power their distributed search and analytics engines, isn’t the hardest thing. What is very hard, though, is to provision the right amount of resources to run the service, especially when your users’ demand comes in spikes, without overpaying for unused capacity. […]
View More Vizion.ai launches its managed Elasticsearch serviceCategory: Elasticsearch
Streaming site Kanopy exposed viewing habits of users, researcher says
On-demand video streaming site Kanopy has fixed a leaking server that exposed the detailed viewing habits of its users. Security researcher Justin Paine discovered the leaking Elasticsearch database last week and warned Kanopy of the exposure. The server was secured two days later on March 18, a spokesperson told TechCrunch. “We are currently investigating the […]
View More Streaming site Kanopy exposed viewing habits of users, researcher saysGearbest security lapse exposed millions of shopping orders
Gearbest, a Chinese online shopping giant, has exposed millions of user profiles and shopping orders, security researchers have found. Security researcher Noam Rotem found an Elasticsearch server leaking millions of records each week, including customer data, orders, and payment records. The server wasn’t protected with a password, allowing anyone to search the data. Gearbest ranks […]
View More Gearbest security lapse exposed millions of shopping ordersDow Jones’ watchlist of 2.4 million high-risk individuals has leaked
A watchlist of risky individuals and corporate entities owned by Dow Jones has been exposed, after a company with access to the database left it on a server without a password. Bob Diachenko, an independent security researcher, found the Amazon Web Services-hosted Elasticsearch database exposing more than 2.4 million records of individuals or business entities. […]
View More Dow Jones’ watchlist of 2.4 million high-risk individuals has leakedYouth-run agency AIESEC exposed over 4 million intern applications
AIESEC, a non-profit that bills itself as the “world’s largest youth-run organization,” exposed more than four million intern applications with personal and sensitive information on a server without a password. Bob Diachenko, an independent security researcher, found an unprotected Elasticsearch database containing the applications on January 11, a little under a month after the database […]
View More Youth-run agency AIESEC exposed over 4 million intern applications