Users of 70 different adult dating and e-commerce websites have had their personal information exposed, thanks to a misconfigured, publicly accessible Elasticsearch cloud server. In all, 320 million individual records were leaked online, researchers said.

All of the impacted websites have one thing in common: They all use marketing software from Mailfire, according to researchers at vpnMentor. The data kept on the server was connected to a notification tool used by Mailfire’s clients to market to their website users and, in the case of dating sites, notify website users of new messages from potential matches.

The data – totaling 882.1GB – comes from hundreds of thousands of individuals, vpnMentor noted; the affected people stretch across the globe, in more than 100 countries.

#breach #cloud security #infosec insider #privacy #web security #adult dating sites #cloud server #data leak #elasticsearch #exposure #mailfire #meow attack #misconfiguration #personal information #records #romantic preferences #vpnmentor