Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Incidents

Roomster Data Leak Exposes 44 Million Files

January 3, 2025
Reading Time: 2 mins read
in Incidents
Roomster Data Leak Exposes 44 Million Files

A serious data breach involving Roomster, the online house-sharing platform, has come to light, potentially compromising the personal information of millions of users. The breach, first uncovered by security researcher @JayeLTee in November 2024, was linked to a misconfigured server that exposed sensitive data for over two years. Among the 44 million files potentially affected were important documents such as driver’s licenses, passports, state ID cards, and work permits. This exposure could have significant privacy implications for those whose personal data was stored in the files.

Upon discovering the breach, @JayeLTee took immediate action by notifying Roomster through their privacy email address. Unfortunately, the company did not respond to the responsible disclosure. As a result, the researcher escalated the issue by reaching out to the New York State Attorney General’s Office. His efforts eventually led to the locking down of the exposed data by December 2024, though Roomster failed to acknowledge the researcher’s notification or offer an explanation regarding the breach. It remains unclear whether the intervention of the state played a role in the resolution.

Roomster, which had previously been involved in legal troubles in 2023, settling charges with the Federal Trade Commission and six states for misleading practices related to fake reviews and unverified listings, now faces new scrutiny. The lack of a direct response or contact information on the website raises further concerns about the company’s commitment to data security. Roomster’s privacy policy notes that it implements “reasonable security measures,” but such language has been called into question, especially in light of this prolonged exposure of highly sensitive information without encryption.

This breach raises important questions about data protection practices and the accountability of companies that handle sensitive user information. Given the failure to address the security lapse for over two years, regulators such as the FTC and New York State may take further action. Roomster’s data security failures may lead to increased regulatory pressure, prompting a closer look at whether the company can truly be trusted to safeguard the personal information of its users. As of now, it remains to be seen what consequences, if any, Roomster will face in response to the incident.

Reference:

  • Roomster Data Leak Exposes 44 Million Files of Personal Info for Over Two Years
Tags: cyber incidentsCyber Incidents 2025CyberattackData BreachesJanuary 2025Personal InformationRoomster
ADVERTISEMENT

Related Posts

The North Face Hit By 4th Credential Hack

White House Chief of Staff’s Phone Hacked

June 3, 2025
The North Face Hit By 4th Credential Hack

Cartier Data Breach Exposes Client Info

June 3, 2025
The North Face Hit By 4th Credential Hack

The North Face Hit By 4th Credential Hack

June 3, 2025
Linux Core Dump Flaws Risk Password Leaks

Covenant Health Cyberattack Shuts Hospitals

June 2, 2025
Linux Core Dump Flaws Risk Password Leaks

Moscow DDoS Attack Cuts Internet For Days

June 2, 2025
Linux Core Dump Flaws Risk Password Leaks

Puerto Rico’s Justice Department Cyberattack

June 2, 2025

Latest Alerts

Fake FB Ban Fix Extension Steals Accounts

Actively Exploited Chrome V8 Flaw Patched

DevOps Servers Hit By JINX0132 Crypto Mine

Linux Core Dump Flaws Risk Password Leaks

GitHub Code Flaw Replicated By AI Models

Google Script Used In New Phishing Scams

Subscribe to our newsletter

    Latest Incidents

    Cartier Data Breach Exposes Client Info

    White House Chief of Staff’s Phone Hacked

    The North Face Hit By 4th Credential Hack

    Covenant Health Cyberattack Shuts Hospitals

    Moscow DDoS Attack Cuts Internet For Days

    Puerto Rico’s Justice Department Cyberattack

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial