Socialarks Data Breached, 400GB of Personal Data Leaked

Israel-based research lab The Safety Detective reported that Chinese social media management company Socialarks was breached and has lead to the leak of 400GB of personal data.

Israel-based research lab The Safety Detective reported that Chinese social media management company Socialarks was breached and has lead to the leak of 400GB of personal data.

The leak was reported to have been caused by a misconfigured ElasticSearch database.

The server reportedly did not have password protection or encryption during routine IP-address checks on potentially unsecured databases.

“The lack of security apparatus on the company’s server meant that anyone in possession of the server IP-address could have accessed a database containing millions of people’s private information,” said Jim Wilson, Security Researcher in the Safety Detective research team.

The databases contained more than 318 million records in total from Facebook, Instagram, and LinkedIn accounts including those owned by celebrities and social media influencers.

Personally identifiable information (PII) such as biographies, profile pictures, follower totals, location settings, contact details such as email addresses and phone numbers, number of followers, number of comments, frequently used hashtags, company names, employment position, and more were visible in the databases.

Safety Detectives said that they have already informed those who had their data exposed to mitigate further risks of any cybersecurity breaches and server leaks.

In response to the discovery of the leak, the database was secured by SocialArks the same day it was revealed.

Last year in August, SocialArks also suffered from a data breach where 150 million accounts were also exposed.  


© Fourth Estate® — All Rights Reserved.
This material may not be published, broadcast, rewritten or redistributed.