Leaked 203,000 ABBYY customers documents
On August 19th, security researcher Bob Diachenko discovered that ABBYY company, OCR (Optical Character Recognition) software developer, leaked more than 203,000 customer documents by exposing, by mistake, a MongoDB server that contained 142GB of scanned document data stored in the cloud, being AWS-hosted, configured for public access.
Among the documents exposed were contracts, non-disclosure agreements, memos, correspondence and other types of private documents.
ABBYY stated that they had blocked external access to the database immediately after Bob Diachenko's announcement, specifically 48 hours after the initial notification as specified by the security researcher.
References:
- 30/08/2018 abbyy.com Security Statement
- 27/08/2018 linkedin.com ABBYY exposed its document storage database with more than 200K scanned contracts, memos, letters.
- 29/08/2018 theregister.co.uk ABBYY woes: Doc-reading software firm leaves thousands of scans blowing in wind
- 31/08/2018 cso.computerworld.es ABBYY filtra por error 203.000 documentos
- 28/08/2018 tripwire.com OCR software firm ABBYY leaks 203,000 customer documents in MongoDB server snafu