An Amazon S3 bucket containing scans of about 119,000 US and foreign citizens' IDs and personal information was found by researchers.
The firm that owns the data, Bongo International, is owned by FedEx and supports North American retailers' and brands' online sales to customers abroad.
In the AWS bucket were over 112,000 files, unencrypted data, and customer ID scans from a wide range of nations, including the US, Mexico, Canada, many EU nations, Saudi Arabia, Kuwait, Japan, Malaysia, China, and Australia.
FedEx did not remove the S3 bucket until its presence was made public, despite Kromtech's best efforts to get in touch with them.
Source: https://securityaffairs.com/69152/data-breach/fedex-company-data-leak.html
"id": "AMA350181223",
"linkid": "amazon-web-services",
"type": "Data Leak",
"date": "02/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"