Scottrade Bank has acknowledged that 20,000 customer records were exposed due to a technical issue. Unintentionally, a 60GB MSSQL database was left accessible on the internet.
The sensitive loan applications of almost 20,000 customers were compromised, as acknowledged by online brokerage Scottrade.
Sensitive data was uploaded to a server hosted by Amazon by Genpact, an IT services company, triggering the incident. Sadly, the company neglected to secure the priceless archive, leaving it vulnerable online.
Vickery claims that the archive exposes names, addresses, social security numbers, and account passwords in plain text.
Source: https://securityaffairs.com/57773/data-breach/scottrade-bank-data-leak.html
"id": "SCO1856211123",
"linkid": "scottrade",
"type": "Data Leak",
"date": "04/2017",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"