Quote:Upguard is reporting it found more than 540 million records from two Facebook app providers on two unprotected Amazon S3 buckets.
The exposed information is from the Mexican media firm Cultura Colectiva and a now defunct Facebook-integrated app called “At the Pool.”
The Cultura Colectiva dataset contained 146GB of data with 540 million records showing comments, likes, reactions, account names, Facebook IDs and more, Upguard wrote.
The At the Pool server had a database backup containing 22,000 records listing fk_user_id, fb_user, fb_friends, fb_likes, fb_music, fb_movies, fb_books, fb_photos, fb_events, fb_groups, fb+checkins, fb_interests and password, although Upguard believes the password is for the app, not the person Facebook password.
“Each of the data sets was stored in its own Amazon S3 bucket configured to allow public download of files,” Upguard wrote, adding that while the two sets contained somewhat different pieces of information they both contain data about Facebook users, describing their interests, relationships, and interactions that were available to third party developers.
SOURCE: https://www.scmagazine.com/home/security...s3-bucket/
![[-]](https://www.geeks.fyi/images/collapse.png)
