January 16th 2019, By Lindsey O'Donnell
VOIPO acknowledged that a development server had been accidentally left publicly accessible, and took the server offline.
An improperly secured database owned by a California voice-over-internet provider left millions of customer call logs, SMS message logs and credentials in plain text open for months for the taking.
The database belongs to VOIPO, which provides mobile services for consumers and commercial businesses.
Security researcher Justin Paine said in a Tuesday post
that he found the open ElasticSearch database using Shodan (a search engine for publicly available devices and databases), and contacted VOIPO on Jan. 8. The database had been exposed since June 2018, he said.