The Hill reports personal data of 2.2 million Dow Jones customers was potentially exposed to unauthorized access because of a cloud computing configuration error. The data in the incident included customer names, email addresses and some financial details, such as the last four digits of some credit card numbers. Account login credentials and full credit card information were not included in the incident. A Dow Jones spokesman said, "This was due to an internal error, not a hack or attack. We have no evidence any of the over-exposed information was taken." The vulnerability was discovered by UpGuard. In a blog post, UpGuard said the data could have been "exploited by malicious actors" in phishing scams, for example.
If you want to comment on this post, you need to login.