Cloud Clusters Hosting Provider Suffers Data Leak, 63M Records Exposed

by   |  Last Update:  |  0 Comments  

On This Page: [hide]

  1. Unprotected database exposed millions of records
  2. What was exposed via the unprotected Cloud Clusters database?

Cloud Clusters Hosting Provider Suffers Data Leak, 63M Records Exposed article imageA massive data leak exposing over 60 million customers records was discovered a few weeks ago. Affected is a cloud application hosting company, Texas-based Cloud Clusters Inc. The data breach was discovered by Security Thoughts and security researcher Jeremiah Fowler.

Unprotected database exposed millions of records

According to the report, a Cloud Clusters’ database that contained “a large amount of monitoring and system logs” was not password-protected. Some records show that exposed information includes data backups, monitoring and error logging, among other details. The cloud hosting provider has data center locations in such as Bend, Oregon, Charlotte, North Carolina, Denver, Colorado, and Dallas, Texas.

Fowler quickly got in touch with the company to inform them about his findings. It turns out that no one replied to his first messages, so he sent a follow-up email on October 13th. Finally, Cloud Clusters acknowledged the emails and sent a notification saying that they take data security “very seriously”. It is still unknown whether the hosting provider contacted their customers to inform them about the major data leak.

What was exposed via the unprotected Cloud Clusters database?

User and password credentials for platforms such as WordPress, Magento, and MySQL were exposed. In terms of the Magento details, login details of shoppers could have been affected as well. “Cloud Clusters Inc’s customers could have been targeted by social engineering or spear phishing attempts using the exposed emails and credentials,” Fowler says.

It is also unclear whether threat actors had access to the records, or how the records were exposed in the first place. The records were publicly accessible, and no hacking skills were necessary to view all 63.7 million of them. Some of the records in the database connected multiple company names that provide similar hosting and management services under the Cloud Clusters umbrella.

When a security breach occurs, it is highly advisable for web masters to change all administrative credentials, as well as customer passwords or details that may have been captured.

In May this year, GoDaddy also suffered a significant data breach. The breach didn’t impact the main GoDaddy’s customer account, and no information within that account was accessed.

If you want to be in the loop with the latest hosting news, stay tuned and follow HowToHosting.guide.

Researched and written by:
HowToHosting Editors
HowToHosting.guide provides expertise and insight into the process of creating blogs and websites, finding the right hosting provider, and everything that comes in-between. Read more...

No related posts.

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree
At HowToHosting.Guide, we offer transparent web hosting reviews, ensuring independence from external influences. Our evaluations are unbiased as we apply strict and consistent standards to all reviews.
While we may earn affiliate commissions from some of the companies featured, these commissions do not compromise the integrity of our reviews or influence our rankings.
The affiliate earnings contribute to covering account acquisition, testing expenses, maintenance, and development of our website and internal systems.
Trust howtohosting.guide for reliable hosting insights and sincerity.