In the wake of major data breaches from renowned companies such as AT&T, T-Mobile, the New York Times, and Google, another massive data breach has been exposed at ServiceBridge - a leading field service management platform.

A jaw-dropping 2.68 TB database was found unprotected on the internet, containing a staggering 31,524,107 files. This treasure trove of sensitive information belonged to businesses and individuals from the US, Canada, and the UK, putting millions at risk. The stolen data included names, physical addresses, email addresses, phone numbers, and partial credit card data, as well as images of properties, businesses, HIPAA patient consent forms, and medical equipment agreements.

Imagine the consequences of this unsecured data in the wrong hands! It could have easily facilitated targeted invoice fraud and even physical attacks, making it a double whammy of digital and real-world threats. Although the data is from 2012, it remains a dangerous weapon for cybercriminals. The unprotected database could have been the launchpad for invoice fraud attacks on businesses, causing losses of over $300,000 to American companies in 2022 alone! And let's not forget the potential of targeted attacks facilitated by the stolen information. With names, addresses, and sensitive business data exposed, the risks of credible and dangerous attacks skyrocket.

Despite receiving notice of the incident, ServiceBridge took down the exposed database, but the big question remains: For how long was it available for cybercriminals

ServiceBridge Exposes 32M Sensitive Business and Personal Files - A Data Breach Nightmare!

Actions