Exposed 11 million SaverSpy records

Security researcher Bob Diachenko has discovered SaverSpy customer database without any protection containing 11 million records with personal details.

The data was available from a misconfigured MongoDB instance set up on the hosting infrastructure from Grupo-SMS, with a size of 43.5 GB, and included email addresses (all of them were Yahoo-based), names, gender and home addresses.

Bob Diachenko contacted SaverSpy about the data breach vulnerability, and although he received no answer, a time later the database access had been taken ofline.