Sensitive and personal information belonging to PayMyTab customers has been exposed due to an open AWS bucket, researchers have revealed.
On Tuesday, vpnMentor cybersecurity researchers, led by Noam Rotem and Ran Locar, disclosed a data leak in which sensitive Personally Identifiable Information (PII) and partial financial details were made available online.
The team was tipped off to the existence of an unsecured Amazon Web Services (AWS) S3 bucket, in which PayMyTab “failed to follow Amazon’s security protocols” and required authentication to access.
Join Us On LinkedIn
Join the Cybersecurity and Incident Response Group on LinkedIn