#stayhome Maintain the distance, wash your hands, and follow instructions from the health authorities.
RSS   Newsletter   Contact   Advertise with us

Estée Lauder exposed 440 million internal records

Share on Twitter Share on LinkedIn
Christian Fernsby ▼ | February 12, 2020
Specialized researcher Jeremiah Fowler has discovered a pretty massive data leak totaling 440,336,852 records.
Estée Lauder
Data security   Estée Lauder
The discovery of the database was made on January 30, 2019, and the evidence of the owner being Estée Lauder was all over the place.

Topics: Estée Lauder

The records contained highly sensitive corporate information, network data, user details, etc., all in plaintext form and without any password set up to protect them.

Here is what the exposed records contained according to Fowler:

440,336,852 logs and records that should not have been publicly exposed online.

“User” emails in plain text (including internal email addresses from the @estee.com domain)

Production, Audit, Error, CMS, and Middleware logs were exposed.

References to reports and other internal documents.

IP addresses, Ports, Pathways, and storage info that cybercriminals could exploit to access deeper into the network.