Ecco, a global shoe manufacturer and retailer, suffered a data breach incident that exposed millions of documents.
Ecco left 50 indices exposed to the public, with over 60GB of data accessible since June 2021.
The names of indices on the open server show that millions of documents were revealed. For example, a directory named sales_org contained over 300,000 documents.
Source: https://securityaffairs.co/wordpress/139885/data-breach/shoemaker-ecco-data-leaks.html
TPRM report: https://scoringcyber.rankiteo.com/company/ecco-sko
"id": "ecc2257261222",
"linkid": "ecco-sko",
"type": "Breach",
"date": "12/2022",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Shoe Manufacturing',
'name': 'Ecco',
'type': 'Retailer'}],
'attack_vector': 'Exposed Indexes',
'data_breach': {'number_of_records_exposed': 'Millions of documents'},
'date_detected': 'June 2021',
'description': 'Ecco, a global shoe manufacturer and retailer, suffered a '
'data breach incident that exposed millions of documents. Ecco '
'left 50 indices exposed to the public, with over 60GB of data '
'accessible since June 2021. The names of indices on the open '
'server show that millions of documents were revealed. For '
'example, a directory named sales_org contained over 300,000 '
'documents.',
'impact': {'data_compromised': ['Millions of documents',
'300,000 documents in sales_org directory']},
'initial_access_broker': {'entry_point': 'Exposed Indexes'},
'title': 'Ecco Data Breach Incident',
'type': 'Data Breach'}