Cybersecurity researcher Jeremiah Fowler recently made a concerning discovery: a cloud database leak linked to the global network service provider Zenlayer was found unprotected and misconfigured, exposing a staggering 380 million records. The exposed data, totaling 57.46 GB, included sensitive information not only about Zenlayer’s internal operations but also about its customers. Shockingly, the leak was not safeguarded by even a basic password, leaving it accessible to anyone, including potential threat actors.
Upon further investigation, it was revealed that the exposed database contained numerous logs documenting both internal operations and customer activities, which could potentially disclose sensitive information. Zenlayer, known for offering SD-WAN, CDN, and cloud services globally, serves various sectors including telecom, gaming, media, entertainment, cloud computing, and blockchain. The exposure of these logs raises concerns about operational efficiency and system security, as the information meant for monitoring and troubleshooting could be exploited if mishandled or accessed by unauthorized individuals.
Moreover, the leaked database contained logging records for various applications, dashboards, vendors, notifications, and security measures, as well as sensitive customer data such as names and emails. This data could be utilized by cybercriminals for targeted phishing attacks or fraudulent activities, posing a significant threat to Zenlayer’s customers. Additionally, the exposure of internal email addresses and user roles could facilitate social engineering attacks and lead to the compromise of credentials, potentially resulting in further security breaches.
