Friday, 1 December 2017

National Credit Federation leaked US citizen data through unsecured AWS bucket.

Tens of thousands of customers of the credit repair service are believed to be affected.

The National Credit Federation (NCF) has become the latest in a long list of companies to leave the sensitive, private data of customers exposed for all to see online.

According to Chris Vickery, UpGuard Director of Cyber Risk Research, the Tampa, Florida-based credit repair firm left 111GB of internal customer information on an Amazon Web Services S3 cloud storage bucket configured to allow public access without restriction.

Full story at ZD Net.

By Charlie Osborne for Zero Day.


  1. This is really challenging situation because AWS is one of most secure servers but they are being hacked. i am also using managed AWS servers from they are giving me support to manage this server.