VOIPO Database Exposes Millions of Texts, Call Logs


Userlevel 7
Badge +48
January 16th 2019, By Lindsey O'Donnell


VOIPO acknowledged that a development server had been accidentally left publicly accessible, and took the server offline.

An improperly secured database owned by a California voice-over-internet provider left millions of customer call logs, SMS message logs and credentials in plain text open for months for the taking.
The database belongs to VOIPO, which provides mobile services for consumers and commercial businesses.

Security researcher Justin Paine said in a Tuesday post that he found the open ElasticSearch database using Shodan (a search engine for publicly available devices and databases), and contacted VOIPO on Jan. 8. The database had been exposed since June 2018, he said.

Full Article.

0 replies

Be the first to reply!

Reply

    Cookie policy

    We use cookies to enhance and personalize your experience. If you accept or continue browsing you agree to our cookie policy. Learn more about our cookies.

    Accept cookies Cookie settings