A massive Database leak has to lead Millions of Messages being exposed out to the public. These messages are sensitive and can lead to a lot of privacy issues.
Massive Database Leak Leads to Millions of Messages being Exposed
The Database is owned by a company called TrueDialog, based in the United States and specializes SMS solutions for companies, colleges, and universities to send bulk text messages to their customers and students.
The offending server stored years of customer sending and receiving text messages and storing them via TrueDialog. But since the server was left unprotected without a password on the internet, none of the data was secured, and anyone could look inside.
Thanks to two security analysts named Noam Rotem and Ran Locar who discovered this considerable data dump which has information about university finance applications, marketing messages from businesses and most importantly 2-factor authentication messages.
The 2 Factor messages being available out in the open have caused a lot of concern due to threat actors using the database to intercept codes which in turn can cause account takeovers and hacks.
After the discovery of this incident, Truedialog has promptly put the server offline and has not made any acknowledgment about the breach and no officials are available to comment on this issue.