Kevin Beaumont on Nostr: Their customer notification says "...as to his illegal and unauthorised access by ...
Their customer notification says "...as to his illegal and unauthorised access by bypassing security controls into any databases." <- it might help if it had any form of security control.
It was default port MongoDB with no authentication configured.
That database was (and is) indexed in multiple online databases, not just BinaryEdge.
It also talks about trying to "apprehend (the researcher)".
The responsible party for security is Teammate App. Their own policy says this.
Published at
2025-02-28 15:44:55Event JSON
{
"id": "5999dbd03219e0b2559a96b7a0c885b5b3ea4ebf0cc80fb5e17c921c09c42de4",
"pubkey": "f6870afcde4480ec8508f50304859e14a51309ff24ab3f0f862c52bdc4af8747",
"created_at": 1740757495,
"kind": 1,
"tags": [
[
"e",
"df274521e2e8dd6ed4443f9e29670fc15372fb81221a3d4387acac6934ec8eda",
"wss://relay.mostr.pub",
"reply"
],
[
"imeta",
"url https://cyberplace.social/system/media_attachments/files/114/082/280/570/881/212/original/ba6cfbd55d0c4603.png",
"m image/png",
"dim 2064x400",
"blurhash UdNKFzoeayWB00j[ayay4na#j[ofD%azj[of"
],
[
"proxy",
"https://cyberplace.social/users/GossiTheDog/statuses/114082283254292292",
"activitypub"
]
],
"content": "Their customer notification says \"...as to his illegal and unauthorised access by bypassing security controls into any databases.\" \u003c- it might help if it had any form of security control.\n\nIt was default port MongoDB with no authentication configured.\n\nThat database was (and is) indexed in multiple online databases, not just BinaryEdge.\n\nIt also talks about trying to \"apprehend (the researcher)\". \n\nThe responsible party for security is Teammate App. Their own policy says this.\n\nhttps://cyberplace.social/system/media_attachments/files/114/082/280/570/881/212/original/ba6cfbd55d0c4603.png",
"sig": "5b8726a7adbf177204e462da5f3bae0e092d705d495a420e26e43294cd453ba276ad0b62139cd496428d0976faca2391134f7698763167201f8425e54f2e9377"
}
