25 Million Records Leaked in Latvia - HackYourMom

19 February 2025 1 minute Author: Newsman

Researchers have uncovered a massive data breach in Latvia, where 25 million records, including citizens’ names, national identification information and home addresses, were stored on open Elasticsearch servers.

The leak occurred due to a vulnerability in the Lietvaris document management system, which is used by Latvian government agencies to process citizen applications. Researchers found that the data was available to the public without protection. The leak contained sensitive information that could be used for identity theft and fraud. The open server will be shut down within 24 hours and an internal investigation will be conducted.
Lietvaris is used by both government agencies and businesses that store large amounts of data. Such a breach poses a serious threat because the exposed information can be automatically collected by cybercriminals. A breach of this magnitude is particularly dangerous in light of the increasing number of cyberattacks and attempts to use personal data for phishing campaigns and financial fraud.

More stringent security management of public platforms and GDPR compliance are needed. Cybersecurity experts recommend that organizations secure their servers, restrict public access, implement encryption and multi-factor authentication, and regularly scan their systems for vulnerabilities

Other related articles

Critical vulnerability in s2Member Pro threatens millions of WordPress sites

Vulnerability CVE-2024-12562 in WordPress plugin s2Member Pro could compromise millions An attack via the s2member_pro_remote_op parameter could allow an attacker to inject malicious PHP objects. Wordfence experts recommend immediately updating the plugin to version 250214 to avoid possible attacks.

87

DOGE.gov still hacked three days later

DOGE.gov remains down three days after attack. Cybersecurity experts point to breaches of FISMA and FedRAMP security standards. Cloudflare Pages’ open database and unsecured infrastructure created vulnerabilities that hackers successfully exploited.

89

Meta has paid out over $2.3 million to cybersecurity researchers as part of its 2024 Bug Rewards program

Meta paid out $2.3 million to cybersecurity researchers in 2024 through its Bug Bounty program, highlighting the importance of collaborating with ethical hackers to strengthen the security of Facebook, Instagram, WhatsApp, and devices like the Meta Quest and Ray-Ban Stories

91

Found an error?

If you find an error, take a screenshot and send it to the bot.

↑