Scottrade

Scottrade Bank, a subsidiary of Scottrade Financial Services, Inc. suffered a data breach incident after an MSSQL database containing sensitive information on at least 20,000 customers was inadvertently left exposed to the public.

The exposed database had no encryption and included 48,000 lessee credit profile rows and 11,000 guarantor rows.

Each row contained information such as Social Security Numbers, names, addresses, phone numbers, and other information that one would expect a bank to possess.

The database also contained internal information, such as plain text passwords and employee credentials used for API access to third-party credit report websites.

Scottrade notified the affected individuals and resolved the issue soon.

Source: https://www.csoonline.com/article/3187480/scottrade-bank-data-breach-exposes-20000-customer-records.html

"id": "SCO13722822",
"linkid": "scottrade",
"type": "Breach",
"date": "04/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"