Ecco, a major shoe store and manufacturer, revealed millions of papers. Not only was it possible for anyone to alter the data, but the severity of the server misconfiguration likely made the organisation vulnerable to an attack that would have had global repercussions for clients.
Millions of private documents, including information on sales and systems, were available. The data might have been accessed, modified, copied, stolen, or erased by anyone with access.
In the hands of persistent threat actors, the power to alter the data within ElasticSearch would be a serious tool that would enable them to launch an attack against Ecco stores, staff members, and even customers.
The database seems to be connected to the ecco.com website, which is probably utilised by international Ecco websites, which is concerning because it gives a skilled threat actor the ability to target the company globally.
Source: https://securityaffairs.com/139885/data-breach/shoemaker-ecco-data-leaks.html
"id": "ECC1938151023",
"linkid": "ecco",
"type": "Breach",
"date": "12/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"